H3C Technologies H3C SecPath F1000-E User Manual
Page 181
170
# Generate the RSA key pairs.
<Router> system-view
[Router] public-key local create rsa
The range of public key size is (512 ~ 2048).
NOTES: If the key modulus is greater than 512,
It will take a few minutes.
Press CTRL+C to abort.
Input the bits of the modulus[default = 1024]:
Generating Keys...
++++++++
++++++++++++++
+++++
++++++++
# Generate a DSA key pair.
[Router] public-key local create dsa
The range of public key size is (512 ~ 2048).
NOTES: If the key modulus is greater than 512,
It will take a few minutes.
Press CTRL+C to abort.
Input the bits of the modulus[default = 1024]:
Generating Keys...
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
+++++++++++++++++++++++++++++++++++
# Enable the SSH server.
[Router] ssh server enable
# Configure an IP address for interface GigabitEthernet 0/1, which the SSH client will use as the
destination for SSH connection.
[Router] interface GigabitEthernet 0/1
[Router-GigabitEthernet0/1] ip address 10.165.87.136 255.255.255.0
[Router-GigabitEthernet0/1] quit
# Set the authentication mode for the user interfaces to AAA.
[Router] user-interface vty 0 4
[Router-ui-vty0-4] authentication-mode scheme
# Enable the user interfaces to support SSH.
[Router-ui-vty0-4] protocol inbound ssh
[Router-ui-vty0-4] quit
# Create local user client001.
[Router] local-user client001
[Router-luser-client001] password simple aabbcc
[Router-luser-client001] service-type ssh
[Router-luser-client001] authorization-attribute level 3
[Router-luser-client001] quit
# Specify the service type for user client001 as Stelnet, and the authentication method as
password. This step is optional.
[Router] ssh user client001 service-type stelnet authentication-type password
2.
Establish a connection between the SSH client and the SSH server