beautypg.com

Dell POWEREDGE M1000E User Manual

Page 932

background image

900

Fabric OS Command Reference

53-1001764-02

sshUtil

2

Operands

This command supports the following operands:

allowuser user name

Configures the specified user to perform public key authentication and all
related management operations. This operation can only be performed by the
default admin. The default admin is, by default, a configured user. Only one
user can be configured at any given time. When the default Admin configures
a user, successful execution of this command deletes the previously
configured user and all public keys associated with this user.

The following operand is required:

user name

Specifies login name for the configured user. The user must be in the switch
user database and must have admin privileges on the switch.

showuser

Displays the currently configured user. This operation can only be performed
by the default admin.

importpubkey

Imports a public key from a remote host to the local switch. This operation
supports authentication for incoming connections. For this operation to
succeed, a public/private key pair must be generated on the remote host
prior to the import by issuing ssh-genkey -t dsa (a UNIX command).
importpubkey can only be performed by a configured user. Once the public
key is imported successfully, the configured user can perform public key
authentication with the switch from the remote host, on which the private key
resides.

importpubkey prompts for the following input parameters:

IP Address

Enter the IP address for the remote host. IPv4 and IPv6 addresses are
supported.

remote directory

Enter the path to store the public key. The default directory where SSH stores
public keys is ~username/.ssh.

login name

Enter the user name for the configured user.

password

Enter the password for the configured user.

showpubkeys

Displays all imported public keys associated with the configured user. Public
keys generated on the switch are not shown. This option can only be
performed by the configured user.

delpubkeys

Deletes all imported public keys associated with the configured user on the
switch. This option can only be performed by the configured user. Deletion of
a configured user's public keys effectively blocks incoming connections from
this user that rely on public key authentication with the switch.

genkey

Generates a private/public key pair on the local switch. Keys are generated
with Digital Signature Algorithm (DSA) encryption. This option can be
performed only by a configured user. This option enables authentication for
outgoing connections from the switch to a remote host. You must export the
public key to a remote host to complete the setup. For incoming connections,
the private/public key must first be generated on the remote host by issuing
ssh-genkey -t dsa (a UNIX command), and then importing the public key from
the remote host to the switch using the sshutil import command.