Large | Medium | Small
SSH is the abbreviation of Secure Shell. When users remotely log in to the router through a network environment that cannot guarantee security, SSH features can provide security guarantees and powerful authentication functions to protect the router from attacks such as IP address fraud, plain-text password interception, etc.
Use SSH Client to log in to the router through password
#
sysname Quidway
#
radius scheme system
#
domain system
#
local-user huawei /Create a local account "huawei"/
password simple huawei /Set password to “huawei”/
service-type ssh
level 3 �
#
interface Ethernet1/0/0
ip address 192.168.1.254 255.255.255.0
#
interface NULL0
#
ssh user huawei authentication-type password /Configure the SSH user authentication method to password/
ssh user huawei service-type stelnet
#
user-interface con 0
user-interface vty 0 4
authentication-mode scheme /Set scheme authentication/
#
return
【verify】
1. Generate local RSA host key pair and server key pair
[Quidway]rsa local-key-pair create
The key name will be: Quidway_Host
The range of public key size is (512 ~ 2048).
NOTES: If the key modulus is greater than 512,
It will take a few minutes.
Input the bits in the modulus[default = 512]: /The default number of bits of the host key is 512 bits/
Generating keys...
..............++++++++++++
.++++++++++++
....................++++++++
.......++++++++
2. Use the SSH client software PuTTY and enter "huawei/huawei" to successfully log in to the system.
【hint】
1. Configuring and generating a local RSA key pair (rsa local-key-pair create) is the primary operation for successfully completing SSH login. This command only needs to be executed once, and the router does not have to be executed again after restarting.
SSH is the abbreviation of Secure Shell. When users remotely log in to the router through a network environment that cannot guarantee security, SSH features can provide security guarantees and powerful authentication functions to protect the router from attacks such as IP address fraud, plain-text password interception, etc.
Use SSH Client to log in to the router through password
#
sysname Quidway
#
radius scheme system
#
domain system
#
local-user huawei /Create a local account "huawei"/
password simple huawei /Set password to “huawei”/
service-type ssh
level 3 �
#
interface Ethernet1/0/0
ip address 192.168.1.254 255.255.255.0
#
interface NULL0
#
ssh user huawei authentication-type password /Configure the SSH user authentication method to password/
ssh user huawei service-type stelnet
#
user-interface con 0
user-interface vty 0 4
authentication-mode scheme /Set scheme authentication/
#
return
【verify】
1. Generate local RSA host key pair and server key pair
[Quidway]rsa local-key-pair create
The key name will be: Quidway_Host
The range of public key size is (512 ~ 2048).
NOTES: If the key modulus is greater than 512,
It will take a few minutes.
Input the bits in the modulus[default = 512]: /The default number of bits of the host key is 512 bits/
Generating keys...
..............++++++++++++
.++++++++++++
....................++++++++
.......++++++++
2. Use the SSH client software PuTTY and enter "huawei/huawei" to successfully log in to the system.
【hint】
1. Configuring and generating a local RSA key pair (rsa local-key-pair create) is the primary operation for successfully completing SSH login. This command only needs to be executed once, and the router does not have to be executed again after restarting.