Public key formats, Authentication, 3 and 4-4 fo – HP 4100GL User Manual

Configuring Secure Shell (SSH)

Public Key Formats

Public Key Formats

Any client application you use for client public-key authentication with the
switch must have the capability export public keys. The switch can accept
keys in the PEM-Encoded ASCII Format or in the Non-Encoded ASCII format.

Comment
describing public

Beginning of actual SSHv2
public key in PEM-Encoded

Figure 4-3. Example of Public Key in PEM-Encoded ASCII Format Common for SSHv2 Clients

Bit
Size

Exponent
<e>

Modulus
<n>

Figure 4-4. Example of Public Key in Non-Encoded ASCII Format (Common for SSHv1 Client Applications)

Steps for Configuring and Using SSH for
Switch and Client Authentication

For two-way authentication between the switch and an SSH client, you must
use the login (Operator) level.

Table 4-5.

SSH Options

Switch

Access

Level

Primary SSH

Authentication

Authenticate

Switch Public Key

to SSH Clients?

Authenticate

Client Public Key

to the Switch?

Primary Switch

Password

Authentication

Secondary Switch

Password

Authentication

Operator
(Login)
Level

ssh login rsa

Yes

Yes

1

No

1

local or none

ssh login Local

Yes

No

Yes

local or none

ssh login TACACS

Yes

No

Yes

local or none

ssh login RADIUS

Yes

No

Yes

local or none

4-5