3com 4210 User Manual
290
C
HAPTER
32: SSH C
ONFIGURATION
G
UIDE
Configuring the
Switch to Act as the
SSH Client and Use
Password
Authentication
Switch to Act as the
SSH Client and Use
Password
Authentication
Network Diagram
Figure 98 Network diagram for configuring the switch to act as the SSH client and use
password authentication
password authentication
Networking and
Configuration
Requirements
In scenarios where users log into a switch over an insecure network by using
another switch, SSH can be used to ensure the security of data exchange to the
maximum extent. As shown in Figure 98:
another switch, SSH can be used to ensure the security of data exchange to the
maximum extent. As shown in Figure 98:
■
Switch A acts as the SSH client and the login username is client001.
■
Switch B acts as the SSH server, whose IP address is 10.165.87.136.
■
Password authentication is required.
Applicable Products
Configuration Procedure
■
Configure Switch B
# Create a VLAN interface on the switch and assign an IP address for it. The SSH
client will use this address as the destination for SSH connection.
client will use this address as the destination for SSH connection.
<3Com> system-view
[3Com] interface vlan-interface 1
[3Com-Vlan-interface1] ip address 10.165.87.136 255.255.255.0
[3Com-Vlan-interface1] quit
# Generate an RSA key pair.
[3Com] rsa local-key-pair create
# Set the authentication mode for the user interfaces to AAA.
[3Com] user-interface vty 0 4
[3Com-ui-vty0-4] authentication-mode scheme
# Enable the user interfaces to support SSH.
SSH server
SSH client
Switch B
Switch A
Vlan -int1
10 .165 .87.136 /24
10 .165 .87.136 /24
Vlan -int1
10.165.87.137/24
Product series
Software version
Hardware version
Switch 5500
Release V03.02.04
All versions
Switch 5500G
Release V03.02.04
All versions
Switch 4500
Release V03.03.00
All versions
Switch 4210
Release V03.01.00
All versions