To do…

 

Use the command…

 

Remarks

 

 

 

Enter system view

 

system-view

 

 

 

 

 

 

 

 

 

 

 

 

Set SSH authentication timeout

 

 

 

Optional

 

 

 

 

ssh server timeout seconds

 

By default, the timeout time is

 

 

 

time

 

 

 

60 seconds.

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

Set SSH authentication retry

 

ssh server

 

Optional

 

 

 

 

 

By default, the number of retry

 

 

 

times

 

authentication-retries times

 

 

 

 

 

 

times is 3.

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

Set RSA server key update

 

ssh server rekey-interval

 

Optional

 

 

 

 

 

By default, the system does not

 

 

 

interval

 

hours

 

 

 

 

 

 

update RSA server keys.

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

Configure SSH server to be

 

ssh server compatible-ssh1x

 

Optional

 

 

 

 

 

By default, SSH server is

 

 

 

compatible with SSH1.x clients

 

enable

 

 

 

 

 

 

compatible with SSH1.x clients.

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

Optional

 

 

 

Configure a login header

 

header shell text

 

By default, no login header is

 

 

 

 

 

 

 

configured.

 

 

 

 

 

 

 

 

 

z

z

You can configure a login header only when the service type is stelnet. For configuration of service types, see Specifying a Service Type for an SSH User.

For details of the header command, see the corresponding section in Login Command.

Configuring the Client Public Key on the Server

This configuration is not necessary if the password authentication mode is configured for SSH users.

With the publickey authentication mode configured for an SSH client, you must configure the client’s RSA or DSA host public key(s) on the server for authentication.

You can manually configure the public key or import it from a public key file. In the former case, you can manually copy the client’s public key to the server. In the latter case, the system automatically converts the format of the public key generated by the client to complete the configuration on the server, but the client’s public key should be transferred from the client to the server beforehand through FTP/TFTP.

Follow these steps to configure the client’s public key manually:

To do…

Use the command…

Remarks

Enter system view

system-view

 

 

 

Enter public key view

public-key peer keyname

Required

 

1-9

 

Page 506
Image 506
3Com WX3000 operation manual Configuring the Client Public Key on the Server