Ssh server configuration examples, When using password authentication, Network requirements – H3C Technologies H3C WX6000 Series Access Controllers User Manual

64-13

To do…

Use the command…

Remarks

Display the source IP address or interface
currently set for the SSH client

display ssh client source

Available in any view

Display the status information or session
information of an SSH server

display ssh server

{ status |

session

}

Available in any view

Display the mappings between host public
keys and SSH servers saved on a client

display ssh server-info

Available in any view

Display information about a specified or all
SSH users on the SSH server

display ssh user-information
[ username ]

Available in any view

SSH Server Configuration Examples

When Using Password Authentication

Network requirements

z

As shown in

Figure 64-2

, a local SSH connection is established between the host (SSH client) and

AC (SSH server) for secure data exchange.

z

Password authentication is required.

Network diagram

Figure 64-2

Network diagram for SSH server configuration (using password authentication)

Configuration procedure

1) Configure the SSH server

# Generate RSA and DSA key pairs and enable the SSH server.

<AC> system-view

[AC] public-key local create rsa

[AC] public-key local create dsa

[AC] ssh server enable

# Configure an IP address for VLAN interface 1. This address will serve as the destination for the SSH
client in connecting the server.

[AC] interface vlan-interface 1

[AC-Vlan-interface1] ip address 192.168.1.40 255.255.255.0

[AC-Vlan-interface1] quit

# Set the authentication mode for the user interface to AAA.

[AC] user-interface vty 0 4

[AC-ui-vty0-4] authentication-mode scheme

# Enable the user interface to support SSH.

[AC-ui-vty0-4] protocol inbound ssh

[AC-ui-vty0-4] quit

# Create local user client001, and set the user command privilege level to 3

[AC] local-user client001