3com WX3000 User Manual

 

1-20 

Follow these steps to enable the device to support first-time authentication: 

Enter system view 

— 

Enable the device to support 
first-time authentication 

Optional 

By default, the client is enabled 
to run initial authentication. 

 

Follow these steps to disable first-time authentication support: 

Enter system view 

— 

Disable first-time authentication 
support 

Required 

By default, the client is enabled 
to run first-time authentication. 

Configure server public key 

 

Required 

The method of configuring 
server public key on the client is 
similar to that of configuring 
client public key on the server. 

Specify the host key name of 
the server 

ssh client { server-ip | 
server-name } assign 
{ publickey | rsa-key } 
keyname 

Required 

 

The client’s method of establishing an SSH connection to the SSH server varies with authentication 

types. See the table below for details. 

Follow these steps to establish an SSH connection: 

Enter system view 

— 

Start the client to establish a 
connection with an SSH server 

ssh2 { host-ip | host-name } 
[ port-num ] [ identity-key { dsa 
| rsa } | prefer_kex 
{ dh_group1 | 
dh_exchange_group } | 
prefer_ctos_cipher { des | 
aes128 } | prefer_stoc_cipher 
{ des | aes128 } | 
prefer_ctos_hmac { sha1 | 
sha1_96 | md5 | md5_96 } | 
prefer_stoc_hmac { sha1 | 
sha1_96 | md5 | md5_96 } ] * 

Required 

In this command, you can also 
specify the preferred key 
exchange algorithm, encryption 
algorithms and HMAC 
algorithms between the server 
and client. 

HMAC: Hash-based message 
authentication code 

Note that: 

The identity-key keyword is 
unnecessary in password 
authentication and optional in 
public key authentication.