Dell POWEREDGE M1000E User Manual
Page 932
900
Fabric OS Command Reference
53-1001764-02
sshUtil
2
Operands
This command supports the following operands:
allowuser user name
Configures the specified user to perform public key authentication and all
related management operations. This operation can only be performed by the
default admin. The default admin is, by default, a configured user. Only one
user can be configured at any given time. When the default Admin configures
a user, successful execution of this command deletes the previously
configured user and all public keys associated with this user.
The following operand is required:
user name
Specifies login name for the configured user. The user must be in the switch
user database and must have admin privileges on the switch.
showuser
Displays the currently configured user. This operation can only be performed
by the default admin.
importpubkey
Imports a public key from a remote host to the local switch. This operation
supports authentication for incoming connections. For this operation to
succeed, a public/private key pair must be generated on the remote host
prior to the import by issuing ssh-genkey -t dsa (a UNIX command).
importpubkey can only be performed by a configured user. Once the public
key is imported successfully, the configured user can perform public key
authentication with the switch from the remote host, on which the private key
resides.
importpubkey prompts for the following input parameters:
IP Address
Enter the IP address for the remote host. IPv4 and IPv6 addresses are
supported.
remote directory
Enter the path to store the public key. The default directory where SSH stores
public keys is ~username/.ssh.
login name
Enter the user name for the configured user.
password
Enter the password for the configured user.
showpubkeys
Displays all imported public keys associated with the configured user. Public
keys generated on the switch are not shown. This option can only be
performed by the configured user.
delpubkeys
Deletes all imported public keys associated with the configured user on the
switch. This option can only be performed by the configured user. Deletion of
a configured user's public keys effectively blocks incoming connections from
this user that rely on public key authentication with the switch.
genkey
Generates a private/public key pair on the local switch. Keys are generated
with Digital Signature Algorithm (DSA) encryption. This option can be
performed only by a configured user. This option enables authentication for
outgoing connections from the switch to a remote host. You must export the
public key to a remote host to complete the setup. For incoming connections,
the private/public key must first be generated on the remote host by issuing
ssh-genkey -t dsa (a UNIX command), and then importing the public key from
the remote host to the switch using the sshutil import command.