HP procurve switch 2650 Access Security Manual page 105

Hide thumbs Also See for procurve switch 2650:

Management and configuration manual (524 pages)

Install manual (86 pages)

Read me first (4 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

page of 184

/ 184
Contents
Table of Contents
Bookmarks

Table of Contents

Bit Size

Public Index

Figure 4-15. Example of a Client Public Key

N o t e s

Property

Supported

Value

Key Format

ASCII

(no PEM or

other

encoding)

Key Type

RSA only

Maximum Supported

3072 bits

Public Key Length

Maximum Key Size

1024

characters

To Create a Client-Public-Key Text File. These steps describe how to

copy client-public-keys into the switch for RSA challenge-response authenti-

cation, and require an understanding of how to use your SSH client applica-

tion.

Modulus

Comment

Comments in public key files, such as smith@support.cairns.com in figure 4-15,

may appear in a SSH client application's generated public key. While such

comments may help to distinguish one key from another, they do not pose

any restriction on the use of a key by multiple clients and/or users.

Public key illustrations such as the key shown in figure 4-15 usually include

line breaks as a method for showing the whole key. However, in practice, line

breaks in a public key will cause errors resulting in authentication failure.

Use your SSH client application to create a public/private key pair. Refer

to the documentation provided with your SSH client application for

details. The switch supports the following client-public-key properties:

Comments

See figure 4-9 on page 4-13. The key must be one unbroken, non-encoded ASCII

string. If you add more than one client-public-key to a file, terminate each key (except

the last one) with a <CR><LF>. Spaces are allowed within the key to delimit the key's

components. Also, the switch supports only SSH version 1. If your SSH client supports

SSHv2, then it may use the PEM format for creating its public key. In this case, you

will need a method for converting the switch's PEM-formatted public key into an

ASCII-string equivalent. Note that, unlike the the use of the switch's public key in an

SSH client application, the format of a client-public-key used by the switch does not

include the client's IP address.

Shorter key lengths allow faster operation, but also mean diminished security.

Includes the bit size, public index, modulus, any comments, <CR>, <LF>, and all blank

spaces.

If necessary, you can use an editor application to verify the size of a key. For example,

placing a client-public-key into a Word for Windows text file and clilcking on File |

Properties | Statistics, lets you view the number of characters in the file, including

spaces.

Configuring Secure Shell (SSH)

MoreInformation on SSH Client Public-Key Authentication

4-23

Table of Contents

Show Quick Links

Hide quick links:

Table of Contents

This manual is also suitable for:

Procurve 6108

HP procurve switch 2650 Access Security Manual page 105

Hide quick links:

Related Manuals for HP procurve switch 2650

Related Products for HP procurve switch 2650

This manual is also suitable for:

Table of Contents