beautypg.com

Adding ssh servers, Authenticating with a server, Adding ssh servers authenticating with a server – Allied Telesis AlliedWare Plus Operating System Version 5.4.4C (x310-26FT,x310-26FP,x310-50FT,x310-50FP) User Manual

Page 1376

background image

Secure Shell (SSH) Introduction

Software Reference for x310 Series Switches

52.10

AlliedWare Plus

TM

Operating System - Version 5.4.4C

C613-50046-01 REV A

Adding SSH Servers

SSH servers identify themselves using a host key (see

“Creating a Host Key” on

page 52.4

). Before the SSH client establishes a session with a SSH server, it confirms that

the host key sent by the server matches its database entry for the server. If the database
does not contains a host key for the server, then the SSH client requires you to confirm
that the host key sent from the server is correct.

To add an SSH server to the client’s database, use the command:

To display the SSH servers in the client’s database, use the command:

To remove an entry in the database, use the command:

Authenticating with a Server

You can authenticate your session with a server by either using a password, or using RSA
or DSA public key authentication. To use public key authentication, you must generate a
pair of keys, one private and one public, and copy the public key onto the SSH server.

To generate an RSA or DSA set of private and public keys for an SSH user, use the
command:

You can generate one key of each encryption type per user on your client. When
authenticating with an SSH server that supports SSH version 1 only, you must use a key
generated by the rsa1 parameter.

To copy the public key onto the SSH server, you must display the key onscreen. To display
the public key associated with a user, use the command:

To display the public keys set for other users, you must specify their username. Only users
with the highest privilege setting can use this command to view the keys of other users.

To delete a public and private pair of keys associated with a user, use the command:

awplus#

Syntaxcrypto key pubkey-chain knownhosts [ip|
ipv6] [rsa|dsa|rsa1]

awplus#

Syntaxshow crypto key pubkey-chain knownhosts
[<1-65535>]

awplus#

no crypto key pubkey-chain knownhosts <1-65535>

awplus(config)#

crypto key generate userkey {dsa|
rsa|rsa1} [<768-32768>]

awplus#

show crypto key userkey [dsa|rsa|
rsa1]

awplus(config)#

crypto key destroy userkey {dsa|rsa|
rsa1}

See also other documents in the category Allied Telesis Computer hardware: