1、创建rsa本地密钥对与创建账号
[Huawei]rsa local-key-pair create
The key name will be: Huawei_Host
The range of public key size is (512 ~ 2048).
NOTES: If the key modulus is greater than 512,
it will take a few minutes.
Input the bits in the modulus[default = 512]:
Generating keys...
2、华为交换机上面创建账号
aaa
local-user admin password cipher TKG40##Y,C!NZPO3JBXBHA!!
local-user admin privilege level 15
local-user admin service-type ssh
3、开启ssh服务以及ssh用户
stelnet server enable
ssh user admin
ssh user admin authentication-type password
ssh user admin service-type stelnet
4、VTY下添加设置
[Huawei]user-interface vty 0 4
[Huawei-ui-vty0-4]authentication-mode aaa
[Huawei-ui-vty0-4]protocol inbound ssh
5、配置实例
[Huawei] rsa local-key-pair create //创建rsa本地密钥对
[Huawei]aaa //进入aaa模式
[Huawei-aaa]local-user admin password ciper mima //配置登录用户密码(admin是登录用户名,mima是登录密码)
[Huawei-aaa]local-user admin service-type ssh //配置登录类型为SSH
[Huawei-aaa]quit //退出
[Huawei]user-interface vty 0 4 //配置用户虚拟端口
[Huawei-ui-vty0-4]authentication-mode aaa //认证类型为3a
[Huawei-ui-vty0-4]user privilege level 15 //配置用户级别
[Huawei-ui-vty0-4]protocol inbound ssh //配置允许ssh登入
[Huawei-ui-vty0-4]quit //退出
[Huawei]stelnet server enable //开启SSH服务
[Huawei]ssh user admin authentication-type password //配置admin用户设置ssh认证为password
[Huawei]ssh user admin service-type stelnet //配置admin用户设置ssh服务类型为stelnet
[Huawei]ssh server port 22622 //配置ssh登录端口为22622,默认是22