Nortel Networks 5500 series User Manual
Page 69
Managing network access devices
69
“Managing SSH keys for Nortel SNAS communication” (page
71)
•
For an Ethernet Routing Switch 5510, 5520, or 5530:
Use the
/cfg/domain #/sshkey/export
command to
upload the key to a TFTP server, for manual retrieval from
the switch (see
“Generating SSH keys for the domain” (page
). For information about downloading the key from the
server to the switch, see Release Notes for Nortel Ethernet
Routing Switch 5500 Series, Software Release 5.0.1, .
If you regenerate the key at any time, you must re-export the
key to each network access devices.
ATTENTION
If you export the key after the network access devices are
enabled, you may need to disable and re-enable the switch in
order to activate the change.
3
For each network access devices, import its public key into the
Nortel SNAS domain, if necessary (see
Nortel SNAS communication” (page 71)
•
For an Ethernet Routing Switch 8300, you can retrieve the
key in two ways:
— Use the
/cfg/domain #/switch #/sshkey/import
command to import the key directly from the network
access devices.
— Use the
/cfg/domain #/switch #/sshkey/add
command to paste in the key.
•
For an Ethernet Routing Switch 5510, 5520, or 5530:
— Use the
/cfg/domain #/switch #/sshkey/import
command to import the key directly from the network
access devices.
If the network access devices was reachable when you added
it to the domain configuration, the SSH key was automatically
retrieved.
If the network access devices defaults, it generates a new public
key. You must reimport the key whenever the switch generates
a new public key (see
“Reimporting the network access devices
ATTENTION
In general, enter
Apply
to apply the changes immediately after you
execute any of the SSH commands.
--End--
Nortel Secure Network Access Switch
Using the Command Line Interface
NN47230-100
03.01
Standard
28 July 2008
Copyright © 2007, 2008 Nortel Networks
.