48
Procedure
To configure the device that serves as an SSH server:
Ste
Command
Remarks
1. Enter system view.
system-view —
2. Create local key pairs.
public-key local create
{ dsa | rsa }
Required.
By default, no local key pairs are created.
3. Enable SSH server. ssh server enable
Required.
By default, SSH server is disabled.
4. Enter one or more VTY user
interface views.
user-interface vty
first-number
[ last-number ]
—
5. Specify the scheme
authentication mode.
authentication-mode
scheme
Required.
By default, authentication mode for VTY user
interfaces is password.
6. Enable the current user
interface to support SSH.
protocol inbound { all
| ssh }
Optional.
By default, Telnet and SSH protocols are both
supported.
7. Enable command
authorization.
command
authorization
Optional.
• By default, command authorization is not
enabled.
• By default, command level for a login user
depends on the user privilege level. The user
is authorized the command with the default
level not higher than the user privilege level.
With the command authorization
configured, the command level for a login
user is determined by both the user privilege
level and AAA authorization. If a user
executes a command of the corresponding
command level, the authorization server
checks whether the command is authorized.
If it is, the command can be executed.
To Next Page
Loading...
Need help?
General
