Network requirements, Configuration procedure – H3C Technologies H3C S6300 Series Switches User Manual
Page 309
294
[SwitchA-pkey-public-key-key1]485348
[SwitchA-pkey-public-key-key1] peer-public-key end
[SwitchA] quit
# Establish an SSH connection to the server, and specify the host public key of the server.
Username: client001
[email protected]'s password:
After you enter the correct password, you log in to Switch B successfully.
{
If you do not configure the server's host public key on the client, when you access the server, the
system will ask you whether to continue with the access. Select Yes to access the server and
download the server's host public key.
Username: client001
The server is not authenticated. Continue? [Y/N]:y
Do you want to save the server public key? [Y/N]:y
[email protected]'s password:
After you enter the correct password, you can log in to Switch B successfully. At the next
connection attempt, the client authenticates the server by using the saved server's host public
key on the client.
Publickey authentication enabled Stelnet client configuration
example
Network requirements
As shown in
, you can log in to Switch B through the Stelnet client that runs on Switch A and are
assigned the user role network-admin for configuration management. Switch B acts as the Stelnet server
and uses publickey authentication and the DSA public key algorithm.
Figure 93 Network diagram
Configuration procedure
In the server configuration, the client public key is required. Use the client software to generate a DSA key
pair on the client before configuring the Stelnet server.
1.
Configure the Stelnet client:
# Assign an IP address to VLAN-interface 2.
[SwitchA] interface vlan-interface 2
[SwitchA-Vlan-interface2] ip address 192.168.1.56 255.255.255.0
[SwitchA-Vlan-interface2] quit
# Generate a DSA key pair.
[SwitchA] public-key local create dsa