CISCO+H3C Switch SSH Configuration instance

Source: Internet
Author: User
Tags modulus

Cisco switch +h3c switch SSH configuration (Cisco shutdown Telnet)

Cisco Switches

  1. Enter Switch configuration mode:

  2. A) coresw#configure Terminal

  3. Configure Switch Name:

  4. A) coresw (config) #hostname coresw(optional configuration).

  5. configuration domain-name:

  6. A) coresw (config) #ip domain-namexxxxx.com(the name depends on your requirements).

  7. Configure the logged on user and password (if a local user can not create it).

  8. A) coresw (config) #username testpassword 0 test(password type optional).

  9. To configure the number of virtual endpoints that can be connected:

  10. A) coresw (config) #line vty 0 4

  11. b) coresw (config-line) #login Local

  12. SSH Service configuration:

  13. A) coresw (config) #crypto keygenerate RSA

The name for the keys would be:CoreSW.xxxxxx.com

Choose the size of the key modulus inthe range of 4096 for your

General Purpose Keys. Choosing a keymodulus greater than

A few minutes.

How many bits in the modulus [512]:coresw.xxxxx.com

% A decimal number between and4096.

How to many bits in the modulus [+]: (Here I choose the default, that is, the direct return, you can also define their own.) )

% generating-bit RSA keys, keyswill be non-exportable ...

[OK] (Elapsed time was 2 seconds) .

  1. Save the configuration.

  2. A) coresw#copy running-configstartup-config

  3. Configuration SSH timeout time.

  4. A) coresw (config) #ip ssh time-out120

  5. Configure the number of repeat logins.

  6. A) coresw (config) #ip sshauthentication-retries 5

  7. Configuration SSH version

  8. A) coresw (config) #ip SSH version 2

. Test SSH mode to connect the switch.

=============================== the configuration is complete here ================================

H3C Switch

  1. Build RSA and DSA secret key pairs

  2. a) [Hjsw-5500-10]public-key localcreate RSA(enter Y )

  3. b) [Hjsw-5500-10]public-key localcreate DSA(direct carriage return)

  4. Set up user login authentication and interface protocol

  5. a) [hjsw-5500-10]user-interfacevty 0 4

  6. b) [Hjsw-5500-10-ui-vty0-4]authentication-modescheme

  7. c) [Hjsw-5500-10-ui-vty0-4]protocolinbound SSH

  8. User settings

  9. A) If there is a relevant user can not create a new user.

  10. b) Create a new user command as follows:

  11. c) [Hjsw-5500-10]local-user user-name

  12. d) [Hjsw-5500-10-luser-xxxxx]authorization-attributelevel 3(User level)

  13. e) [hjsw-5500-10-luser-xxxxx]service-typessh (service type)

  14. Specify the user authentication method as password

  15. a) [hjsw-5500-10]ssh userwangchuyuan service-type all authentication-type password

=============================== the configuration is complete here ================================


This article is from the "Heaven" blog, please be sure to keep this source http://chudi.blog.51cto.com/7542593/1787633

CISCO+H3C Switch SSH Configuration instance

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.