Verifying the configuration – H3C Technologies H3C S6300 Series Switches User Manual

305

# Configure an IP address for VLAN-interface 2. The client uses this address as the destination for

NETCONF-over-SSH connection.

[Switch] interface vlan-interface 2

[Switch-Vlan-interface2] ip address 192.168.1.40 255.255.255.0

[Switch-Vlan-interface2] quit

# Set the authentication mode to AAA for the user lines.

[Switch] line vty 0 63

[Switch-line-vty0-63] authentication-mode scheme

[Switch-line-vty0-63] quit

# Create a local device management user client001.

[Switch] local-user client001 class manage

# Set the password to aabbcc in plain text for the local user client001.

[Switch-luser-manage-client001] password simple aabbcc

# Authorize the local user client001 to use the SSH service.

[Switch-luser-manage-client001] service-type ssh

# Assign the user role network-admin to the local user client001.

[Switch-luser-manage-client001] authorization-attribute user-role network-admin

[Switch-luser-manage-client001] quit

# Configure an SSH user client001. Specify the service type as NETCONF and the authentication method
as password for the user.

[Switch] ssh user client001 service-type netconf authentication-type password

Verifying the configuration

# Verify that you can perform NETCONF operations after logging in to the switch. (Details not shown.)