Configuration Files
l Configuration file of the SSH server.
#
sysname SSH Server
#
rsa peer-public-key rsakey001
public-key-code begin
3047
0240
C4989BF0 416DA8F2 2675910D 7F2997E8 5573A35D 0163FD4A FAC39A6E 0F45F325
A4E3AA1D 54692B04 C6A28D3D C58DE2E8 E0D58D65 7A25CF92 A74D21F9 E917182B
0203
010001
public-key-code end
peer-public-key end
#
aaa
local-user client001 password cipher N`C55QK<`=/Q=^Q`MAF4<1!!
local-user client001 privilege level 3
local-user client001 ftp-directory flash:
local-user client001 service-type ssh
local-user client002 password cipher N`C55QK<`=/Q=^Q`MAF4<1!!
local-user client002 privilege level 3
local-user client002 ftp-directory flash:
local-user client002 service-type ssh
#
sftp server enable
ssh user client002 authentication-type rsa
ssh user client002 assign rsa-key RsaKey001
#
user-interface vty 0 4
authentication-mode aaa
protocol inbound ssh
#
Return
l Configuration file of Client001 on the SSH client
#
sysname client001
#
interface Ethernet1/0/0
ip address 10.164.39.220 255.255.255.0
#
ssh client first-time enable
#
return
l Configuration file of Client002 on the SSH client
#
sysname client002
#
interface Ethernet1/0/0
ip address 10.164.39.221 255.255.255.0
#
ssh client first-time enable
#
return
8.7.5 Example for Authenticating SSH Through RADIUS
This example shows how to configure a RADIUS server to authenticate a user who attempts to
access the SSH server. The SSH server determines whether to grant the user access and set up
a connection based on the authentication result.
Huawei AR1200 Series Enterprise Routers
Configuration Guide - Basic Configuration 8 Accessing Another Device
Issue 04 (2012-05-15) Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
182
To Next Page
Need help?
General
