Digi TS8, 16 manual Configuring SSH Version 2 for Secure Communication, Password Protection

Page 66

Configuring SSH Version 2 for Secure Communication

This section discusses how to configure a user to use SSH version 2 encryption.

Password Protection

To configure simple password authentication for an SSH user, no SSH-specific configuration is required. Simply configure a user by entering the following commands:

set user name= name password=on

newpass name=name

where name is a user name

Example

set user name=ssh-user1

newpass name=ssh-user1

Using a Public Key

To enable public key authentication and to associate a public key with a user, enter the following command:

set user name= name loadkey=host:key

where

•name is the name of a user

•host is either an IP address or DNS name of a host running TFTP that holds

•key is the name of a file that contains the DSA public key. If your host’s implementation requires a complete path to the file, specify the path here as well.

Example: set user name=secure loadkey=143.191.2.34:ssh-file

12-8	Configuring SSH Version 2 for Secure Communication

Image 66

Contents

PortServer TS 8/16 Configuration and Administration Guide Page Contents Chapter Configuring Users Page Introduction This ChapterSetup Overview About Entering Commands on the Command Line About This GuideSupported Devices Access Resource CD Card Other Documents in the LibraryConfiguring the PortServer TS 8/16 from the Web Interface About Configuration MethodsConfiguring the PortServer TS 8/16 from a Telnet Session Downloading a Configuration FileAccessing the Command Line from a Telnet Session Configuration PrerequisitesLogging On As Root from the Command Line Accessing the Configuration from the Web InterfaceConfiguring the IP Address Options for Configuring the IP Address and Mask OptionsConfiguring the Ethernet Interface with DPA-Remote ProcedureStarting Point Configuring the IP Address Using Ping-ARP Manual Configuration Procedure Configuring the Ethernet Interface from the Command LineConfiguring an IP Address using Dhcp and Rarp Manual Configuration ExampleConfiguring an IP Address using Dhcp and Rarp Configuring Ports for RealPort Configuration Options What is RealPort?Configuring the RealPort Software About RealPortConfiguring Ports Web Interface Configuring Ports for RealPort Command Line ExampleConfiguring Ports for Printers Configuration Considerations Tips for telnet and rsh Printing Configuring Ports for Printers Web InterfaceConfiguring Printer Connections Command Line Related InformationConfiguring Printer Connections Command Line Configuring a Port for Direct-Access Printing Configuring a Port for Direct-Access Printing Configuring Ports for Terminals Configuring Ports for Terminals Web Interface Configuring Ports for Terminals Command LinePort Defaults Configuring Typical PC Connections About Computer ConnectionsAbout Computer Connections Configuring Ports for Modems Tips on Configuring a Modem Configuring Ports for Modems Web Interface Before You Begin Configuring PPP Configuring PPP Connections Web Interface Configuring Inbound PPP Connections Command Line Configuring Inbound PPP Connections Example Configuring Outbound PPP Connections Command Line Set user name=name n1=telephone-number Configuring IP Routing What is Routing Introduction to RoutingTypes of Routing About RIP Routing Updates PortServer TS 8/16 Participation in RIP Updates Configuring Static Routes Example Route Using the Ethernet InterfaceExample Route Using a PPP Link Configuring Dynamic Routes Using RIP Example Dynamic RoutesConfiguring Proxy ARP Configuring Proxy ARP Configuring Autoconnection Configuring a Port for Autoconnection Web Interface Configuring Autoconnection By Port Command LineAbout Autoconnection Configuring a User for Autoconnection Web Interface Configuring a User for Autoconnection Command LineConfiguring a User for Autoconnection Command Line Configuring Console Management Configuring Console Management Web Interface Configuring Console Management Command LineAbout Console Management Example SSH2 and Menu Access Example Alternate IP Addresses10-4 Configuring Security Features Controlling Access to the PortServer TS 8/16 Configuration Controlling Access to Inbound PortsControlling Access to Outbound Ports Controlling Access to the PortServer TS 8/16 Command Line Radius Components Using Radius to Authenticate Users What is RADIUS? Radius Table KeyConfiguring Radius Web Interface Radius Accounting Attributes RFCHow Radius Works Configuring Radius Command Line Radius Command Line Configuration ExampleIssuing User Passwords Configuring SSH Version 2 for Secure Communication Password ProtectionUsing a Public Key Configuring DNS About the Domain Name System Configuration Procedures Procedure for Using a Name ServerProcedure for Using a Host File 13-4 Configuring Snmp About Snmp and the PortServer TS 8/16 Agent Configuration Procedure Web Interface Configuration Procedure Command LineConfiguration Example 14-4 Managing the OS and Configuration Upgrading the OS Firmware Web Interface Upgrading the OS Firmware Command Line Prerequisite TaskRules for Editing a Configuration file Configuring PortServer TS 8/16 from a Remote HostWhen To Use Remote Configuration Copying the Configuration File to a HostCpconf fromhost=199.250.121.12cnfg-fle Resetting the Configuration to Defaults RadiusConfiguring Users About Configuring Users Common User FeaturesConfiguration Methods Configuring a User Web Interface Configuring a User Command Line Examples Configuration Examples Configuration Notes Terminal Server Configuration Without RealPortConfiguration IllustrationTerminal Server Configuration Using Autoconnection Terminal Server Configuration Using RealPort Dial-In PPP Connection Using Radius Dial-In PPP Connection Using Radius PortServer TS 8/16 Troubleshooting Symptom PortServer TS 8/16 Does Not Boot IntroductionSymptom Cannot Telnet to the PortServer TS 8/16 AssumptionsSymptom Trouble Accessing a Port Running PortServer TS 8/16 Hardware DiagnosticsProcedure Running the Post Using the LEDs Procedure Running the Post from a TerminalRunning PortServer TS 8/16 Post Troubleshooting Tftp Problems Verifying Tftp on a Unix SystemResetting PortServer TS 8/16 Configuration to Defaults Command Line ProcedureFront Panel Procedure Verifying the PortServer TS 8/16 IP Address 17-9 Checking for Duplicate IP Addresses Pinging an IP Address Verifying the Network Cabling HP-UX Verifying the RealPort Process Verifying the RealPort ProcessAIX Verifying the RealPort Process Linux Verifying the RealPort ProcessWindows NT Verifying the RealPort Service Windows 2000 Verifying the RealPort ServiceSolaris Verifying the RealPort Process Checking and Changing Port Configuration RealPortDigi Contact Information Digi International Bren Road East Minnetonka, MN