9 Telnet and SSH
9.3.3 Configuring SSH for the VTY User Interface
Do as follows on the login router:
Step 1 Run:
system-view
The system view is displayed.
Step 2 Run:
user-interface [ vty ] first-ui-number [ last-ui-number ]
The VTY user interface is displayed.
Step 3 Run:
authentication-mode aaa
The AAA authentication mode is configured.
Step 4 Run:
protocol inbound ssh
The VTY is configured to support SSH.
----End
9.3.4 Generating a Local RSA Key Pair
Do as follows on the router that serves as the client and the server separately:
Step 1 Run:
system-view
The system view is displayed.
Step 2 Run:
rsa local-key-pair create
A local RSA key pair is generated.
----End
9-10
Configuring the Authentication Mode for SSH Users
Configuring the Service Type of SSH Users
The authentication mode of the VTY user interface must be configured to AAA. Otherwise, the protocol
inbound ssh command cannot be configured successfully.
To log in to the SSH server, the local RSA key pair must be configured and generated first. Before the
other configurations of SSH, you must configure the rsa local-key-pair create command to generate a
local key pair.
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
Quidway NetEngine20/20E
Configuration Guide - Basic Configurations
Issue 05 (2010-01-30)