Thursday, July 12, 2012

SSH Configuration on H3C S3100 Switch

Try :
[msmunir@msmunir2 ~]$ ssh msmunir@192.168.131.4 <Enter>
Received disconnect from 192.168.131.4: 2: The connection is closed by SSH Server
Current FSM is SSH_Main_VersionMatch

Create a VLAN interface on the switch and assign an IP Address, which the SSH client will use as the destination of SSH connection

<sjk>system-view <Enter>
[SJK]interface Vlan-interface 1 <Enter>
[SJK-Vlan-interface1]ip address 192.168.131.4 255.255.255.0 <Enter>
[SJK-Vlan-interface1]quit <Enter>

Generating RSA and DSA key pairs
[SJK] public-key local create rsa <Enter>
[SJK] public-key local create rsa <Enter>

Set the authentication for the user interface to AAA
[SJK]user-interface vty 0 4 <Enter>
[SJK-ui-vty0-4]authentication-mode scheme <Enter>

Enable the user interfaces to support SSH
[SJK-ui-vty0-4]protocol inbound all <Enter>
[SJK-ui-vty0-4]quit <Enter>

Create local client msmunir, and set the authentication password to kenanga, protocol type to SSH and Telnet, and command privilege level to 3 for the client
[SJK]local-user msmunir <Enter>
New local user added.
[SJK-luser-msmunir]password cipher kenanga <Enter>
[SJK-luser-msmunir]service-type ssh telnet terminal <Enter>
[SJK-luser-msmunir]level 3 <Enter>
[SJK-luser-msmunir]quit <Enter>
[SJK]save <Enter>

Try :
[msmunir@msmunir2 ~]$ ssh msmunir@192.168.131.4 <Enter>
The authenticity of host '192.168.131.4 (192.168.131.4)' can't be established.
RSA key fingerprint is ce:73:f6:06:ba:b1:96:88:74:0a:b7:1a:ff:fe:c4:b1.
Are you sure you want to continue connecting (yes/no)? yes
Warning: Permanently added '192.168.131.4' (RSA) to the list of known hosts.
Received disconnect from 192.168.131.4: 2: The connection is closed by SSH Server
Current FSM is SSH_Main_SSHProcess
[msmunir@msmunir2 ~]$

Specify the authentication method of user msmunir as password
[SJK]ssh user msmunir authentication-type password <Enter>
[SJK]save <Enter>

Try :
[msmunir@msmunir2 ~]$ ssh msmunir@192.168.131.4 <Enter>
msmunir@192.168.131.4's password:

********************************************************************************
*  Copyright(c) 2004-2010 Hangzhou H3C Tech. Co., Ltd. All rights reserved.    *
*  Without the owner's prior written consent,                                  *
*  no decompiling or reverse-engineering shall be allowed.                     *
********************************************************************************

<sjk>
%Apr  2 00:00:30:776 2000 SJK SHELL/5/LOGIN:- 1 - msmunir(192.168.131.10) in unit1 login
<sjk>
Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)