[Sysname] ssh server rekey-interval 3
ssh user
Syntax
ssh user username service-type stelnet authentication-type { password | { any | password-publickey |
publickey } assign publickey keyname }
ssh user username service-type { all | scp | sftp } authentication-type { password | { any |
password-publickey | publickey } assign publickey keyname work-directory directory-name }
undo ssh user username
View
System view
Default level
3: Manage level
Parameters
username: Specifies an SSH username, a case-sensitive string of 1 to 80 characters.
service-type: Specifies the service type of an SSH user, which can be one of the following:
all: Specifies Stelnet, SFTP, and SCP.
•
•
scp: Specifies the service type as secure copy.
sftp: Specifies the service type as secure FTP.
•
stelnet: Specifies the service type of secure Telnet.
•
authentication-type: Specifies the authentication method of an SSH user, which can be one of the
following:
password: Specifies password authentication. This authentication method features easy and fast
•
encryption, but it is vulnerable. It can work with AAA to implement user authentication,
authorization, and accounting.
any: Specifies either password authentication or publickey authentication.
•
password-publickey: Specifies both password authentication and publickey authentication
•
(featuring higher security) if the client runs SSH2, and performs either type of authentication if the
client runs SSH1.
publickey: Specifies publickey authentication. This authentication method has the downside of
•
complicated and slow encryption, but it provides strong authentication that can defend against
brute-force attacks. This authentication method is easy to use. Once it is configured, the
authentication process completes automatically without the need of remembering or entering any
password.
assign publickey keyname: Assigns an existing public key to an SSH user. The keyname argument
indicates the name of the client public key and is a string of 1 to 64 characters.
work-directory directory-name: Specifies the working directory for an SFTP user. The directory-name
argument indicates the name of the working directory and is a string of 1 to 135 characters.
Description
Use ssh user to create an SSH user and specify the service type and authentication method.
Use undo ssh user to delete an SSH user.
205