H3C Technologies H3C WX3000E Series Wireless Switches User Manual

302

c.

Click Save private key to save the private key.
A warning window pops up to prompt you whether to save the private key without any
protection.

d.

Click Yes and enter the name of the file for saving the key (private in this case).

e.

Transmit the public key file to the server through FTP or TFTP. (Details not shown.)

2.

Configure the SSH server:
# Generate RSA key pairs and enable SSH server.

<AC> system-view

[AC] public-key local create rsa

[AC] ssh server enable

# Configure an IP address for VLAN-interface 2, which the SSH client will use as the destination for

SSH connection.

[AC] interface vlan-interface 2

[AC-Vlan-interface2] ip address 192.168.1.40 255.255.255.0

[AC-Vlan-interface2] quit

# Set the authentication mode for the user interfaces to AAA.

[AC] user-interface vty 0 4

[AC-ui-vty0-4] authentication-mode scheme

# Enable the user interfaces to support SSH.

[AC-ui-vty0-4] protocol inbound ssh

# Set the user command privilege level to 3.

[AC-ui-vty0-4] user privilege level 3

[AC-ui-vty0-4] quit

# Import the client's host public key from file key.pub and name it key001.

[AC] public-key peer key001 import sshkey key.pub

# Specify the authentication type for user client002 as publickey, and assign the public key
key001 to the user.

[AC] ssh user client002 service-type stelnet authentication-type publickey assign

publickey key001

3.

Specify the private key file and establish a connection with the SSH server:

a.

Launch PuTTY.exe to enter the following interface.

b.

In the Host Name (or IP address) text box, enter the IP address of the server.