H3C交換機SSH登入配置

你在第一次使用SSH協定連接配接裝置時，都會傳回一個對話框：提示是否信任該密鑰。那麼我們交換機配置SSH協定時，第一步就是建立密鑰對：

[H3C]display public-key local rsa public           #發現沒有密鑰對,如果有的話可以不用建立

[H3C]public-key local create rsa           #建立RSA秘鑰對

The range of public key modulus is (512 ~ 2048).

If the key modulus is greater than 512, it will take a few minutes.

Press CTRL+C to abort.

Input the modulus length [default = 1024]:

Generating Keys…

…

Create the key pair successfully.

[H3C]display public-key local rsa public           #檢視本地RSA秘鑰對

=============================================

Key name: hostkey(default)

Key type: RSA

Time when key pair created: 01:25:10 2019/11/27

Key code:

30819F300D06092A864886F70D010101050003818D0030818902818100FAEB8F943737BAEE

B3BDD6F8771C66DB3E58E7D3DF71A939CD2A19D725C7BE7C2E92240568C9060E28E4F5C3A3

AD7CAF2DA9E7ADA30DE60AAA912F8603B4EBCD6FB24C16230870999C5D27D97CA012B95070

FDEE24235EACE186B29D13B8A949EEC7B260479DC4AFF460092883F5D6F73A2CCB5A7A2BC4

0C9FD6F005201F561F0203010001

=============================================

Key name: serverkey(default)

Key type: RSA

Time when key pair created: 01:25:10 2019/11/27

Key code:

307C300D06092A864886F70D0101010500036B003068026100E6ECF228ED19FDD813083A42

BD40D3F2354B12FD081206EC9EEA81974CFD4B74550BD60D79C5022A6C8B75074F5843E570

320B1A3CEF6FC9104D5C27A8667EC71BDC462B17E4E2815513FE2BF5F313DE32A84CD0571E

D30E4F2B04B5F23577430203010001

[H3C]

1、建立接口位址用來登入

[H3C]interface Vlan-interface 1

[H3C-Vlan-interface1]ip address 192.168.1.252 24

[H3C-Vlan-interface1]quit

2、建立虛拟終端驗證方式

[H3C]user-interface vty 0 4

[H3C-line-vty0-4]authentication-mode scheme

[H3C-line-vty0-4]quit

3、添加ssh使用者并綁定服務類型和授權

[H3C]local-user myroot class manage

[H3C-luser-manage-myroot]password simple my123456

[H3C-luser-manage-myroot]service-type ssh

[H3C-luser-manage-myroot]authorization-attribute user-role network-admin

[H3C-luser-manage-myroot]quit

4、開啟服務并儲存

[H3C]ssh server enable

[H3C]save

-----------------------------------------------

[H3C]public-key local destroy rsa #删除RSA秘鑰