Ssh server configuration examples, Network requirements, Configuration procedure – H3C Technologies H3C WX3000E Series Wireless Switches User Manual

298

SSH server configuration examples

When the AC acts as an SSH server for password
authentication

Network requirements

As shown in

Figure 126

, the host (the SSH client) and the AC (the SSH server) can reach each other. The

host runs SSH client software to log into the AC for configuration. Password authentication is used.

Figure 126 Network diagram

Configuration procedure

1.

Configure the SSH server:
# Generate RSA key pairs and enable SSH server.

system-view

[AC] public-key local create rsa

[AC] ssh server enable

# Configure an IP address for VLAN-interface 2, which the SSH client will use as the destination for
SSH connection.

[AC] interface vlan-interface 2

[AC-Vlan-interface2] ip address 192.168.1.40 255.255.255.0

[AC-Vlan-interface2] quit

# Set the authentication mode for the user interfaces to AAA.

[AC] user-interface vty 0 4

[AC-ui-vty0-4] authentication-mode scheme

# Enable the user interfaces to support SSH.

[AC-ui-vty0-4] protocol inbound ssh

[AC-ui-vty0-4] quit

# Create local user client001, and set the user command privilege level to 3.

[AC] local-user client001

[AC-luser-client001] password simple aabbcc

[AC-luser-client001] authorization-attribute level 3

[AC-luser-client001] service-type ssh

[AC-luser-client001] quit

# Specify the service type for user client001 as stelnet, and the authentication mode as password.

[AC] ssh user client001 service-type stelnet authentication-type password

2.

Configure the SSH client:
There is a variety of SSH client software, such as PuTTY and OpenSSH. The following example
uses an SSH client that runs Putty version 0.58.