H3C Technologies H3C SecPath F1000-E User Manual
Page 191
180
# Configure an IP address for interface GigabitEthernet 0/1.
<SecPath> system-view
[SecPath] interface GigabitEthernet 0/1
[SecPath-GigabitEthernet0/1] ip address 192.168.0.2 255.255.255.0
[SecPath-GigabitEthernet0/1] quit
# Generate the RSA key pairs.
[SecPath] public-key local create rsa
The range of public key size is (512 ~ 2048).
NOTES: If the key modulus is greater than 512,
It will take a few minutes.
Press CTRL+C to abort.
Input the bits of the modulus[default = 1024]:
Generating Keys...
++++++++
++++++++++++++
+++++
++++++++
# Export the host public key to file pubkey.
[SecPath] public-key local export rsa ssh2 pubkey
[SecPath] quit
Then, you need to transmit the public key file to the server through FTP or TFTP.
2.
Configure the SFTP server.
# Generate the RSA key pairs.
<Router> system-view
[Router] public-key local create rsa
The range of public key size is (512 ~ 2048).
NOTES: If the key modulus is greater than 512,
It will take a few minutes.
Press CTRL+C to abort.
Input the bits of the modulus[default = 1024]:
Generating Keys...
++++++++
++++++++++++++
+++++
++++++++
# Generate a DSA key pair.
[Router] public-key local create dsa
The range of public key size is (512 ~ 2048).
NOTES: If the key modulus is greater than 512,
It will take a few minutes.
Press CTRL+C to abort.
Input the bits of the modulus[default = 1024]:
Generating Keys...
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
+++++++++++++++++++++++++++++++++++
# Enable the SSH server.
[Router] ssh server enable