H3C Technologies H3C S12500 Series Switches User Manual

Page 42

Step Command

Remarks

Enable SSH server.

ssh server enable

By default, SSH server is disabled.

Exit to system view.

quit

N/A

Enter one or more VTY user
interface views.

user-interface vty first-number
[ last-number ]

N/A

Specify the scheme
authentication mode.

authentication-mode scheme

By default, authentication mode for
VTY user interfaces is password.

Enable the current user

interface to support either
Telnet, SSH, or both of them.

protocol inbound { all | ssh }

Optional.
By default, both protocols are
supported.

Exit to system view.

quit

N/A

Configure the authentication
mode.

Enter the default ISP
domain view:

domain domain-name

Apply the specified AAA
scheme to the domain:

authentication default

{ hwtacacs-scheme
hwtacacs-scheme-name

[ local ] | local | none |

radius-scheme
radius-scheme-name

[ local ] }

Exit to system view:

quit

Optional.
By default, the AAA scheme is
local.
If you specify the local AAA
scheme, perform the configuration

concerning local user as well. If
you specify an existing scheme by

providing the radius-scheme-name

argument, perform the following
configuration as well:

•

For RADIUS and HWTACACS

configuration, see Security
Configuration Guide.

•

Configure the username and

password on the AAA server.
For more information, see

Security Configuration Guide.

10.

Create a local user and enter
local user view.

local-user user-name

By default, no local user exists.

11.

Set the local password.

password { cipher | simple }
password

By default, no local password is
set.

12.

Specify the command level of
the local user.

authorization-attribute level level

Optional.
By default, the command level is 0.

13.

Specify the service type for the
local user.

service-type ssh

By default, no service type is
specified.

14.

Exit to system view.

quit

N/A

15.

Create an SSH user, and
specify the authentication

mode for the SSH user.

ssh user username service-type
stelnet authentication-type
{ password | { any |

password-publickey | publickey }

assign publickey keyname }

Optional.
By default, no SSH user exists, and
no authentication mode is

specified.

16.

Configure common settings

for VTY user interfaces.

N/A

Optional.
See "

Configuring common settings

for user interfaces

This manual is related to the following products:

H3C S12500-X Series Switches H3C S9800 Series Switches H3C S9500E Series Switches H3C S5560 Series Switches H3C S5130 Series Switches H3C S5120 Series Switches H3C SR8800 H3C SR6600-X H3C SR6600 H3C MSR 5600 H3C MSR 50 H3C MSR 3600 H3C MSR 30 H3C MSR 2600 H3C MSR 20-2X[40] H3C MSR 20-1X H3C MSR 930 H3C MSR 900 H3C WX3000E Series Wireless Switches H3C WX5500E Series Access Controllers H3C WX3500E Series Access Controllers H3C WX2500E Series Access Controllers H3C WX6000 Series Access Controllers H3C WX5000 Series Access Controllers H3C WX3000 Series Unified Switches H3C LSWM1WCM10 Access Controller Module H3C LSUM3WCMD0 Access Controller Module H3C LSUM1WCME0 Access Controller Module H3C LSWM1WCM20 Access Controller Module H3C LSQM1WCMB0 Access Controller Module H3C LSRM1WCM2A1 Access Controller Module H3C LSBM1WCM2A0 Access Controller Module H3C WA3600 Series Access Points H3C WA2600 Series WLAN Access Points H3C SecPath F5020 H3C SecPath F5040 H3C VMSG VFW1000 H3C S10500 Series Switches