Displaying and maintaining ssh configuration, Comparison of ssh commands with the same functions – H3C Technologies H3C S3100 Series Switches User Manual

Page 733

Advertising
background image

1-20

To do...

Use the command...

Remarks

Start the client to
establish a connection
with an SSH server

ssh2 { host-ip | host-name }
[ port-num ] [ identity-key
{ dsa | rsa } | prefer_kex
{ dh_group1 |
dh_exchange_group } |
prefer_ctos_cipher { des |
aes128 } | prefer_stoc_cipher
{ des | aes128 } |
prefer_ctos_hmac { sha1 |
sha1_96 | md5 | md5_96 } |
prefer_stoc_hmac { sha1 |
sha1_96 | md5 | md5_96 } ] *

Required

In this command, you can also specify
the preferred key exchange algorithm,
encryption algorithms and HMAC
algorithms between the server and
client.

HMAC: Hash-based message
authentication code

Note that:

The identity-key keyword is
unnecessary in password
authentication and optional in public
key authentication.

When logging into the SSH server using public key authentication, an SSH client needs to read its local

private key for authentication. As two algorithms (RSA or DSA) are available, the identity-key keyword

must be used to specify one algorithm in order to get the correct private key.

Displaying and Maintaining SSH Configuration

To do...

Use the command...

Remarks

Display the public key part of the current
switch’s key pairs

display public-key local { dsa |
rsa } public

Display information about locally saved
public keys of SSH peers

display public-key peer [ brief |
name pubkey-name ]

Display SSH status and session information

display ssh server { session |
status }

Display SSH user information

display ssh user-information
[ username ]

Display the mappings between host public
keys and SSH servers saved on a client

display ssh server-info

Available in
any view

Comparison of SSH Commands with the Same Functions

After the SSH protocol supports the DSA asymmetric key algorithm, some SSH configuration

commands are changed. For the sake of SSH configuration compatibility, the original commands are

still supported.

Table 1-18

lists both the original commands and current commands.

Table 1-18 List of SSH configuration commands with the same functions

Operation

Original commands

Current commands

Display local RSA public
key(s)

display rsa local-key-pair public

display public-key local rsa
public

Advertising
Popular Brands
Popular manuals