HP 6125G HP 6125G & 6125G/XG Blade Switches Security Configuration Gui - Page 196
Configuring whether first-time authentication is supported
View all HP 6125G manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 196 highlights
Step 1. Enter system view. Command system-view Remarks N/A • Specify a source IPv4 address or interface for the SSH client: Select either approach. ssh client source { ip ip-address | interface By default, an SSH client 2. Specify a source IP interface-type interface-number } uses the IP address of address or interface for the SSH client. • Specify a source IPv6 address or interface for the SSH client: the outbound interface defined by the route to ssh client ipv6 source { ipv6 ipv6-address | the SSH server to access interface interface-type interface-number } the SSH server. Configuring whether first-time authentication is supported When the switch acts as an SSH client and connects to the SSH server, you can configure whether the switch supports first-time authentication. • With first-time authentication, when an SSH client not configured with the server host public key accesses the server for the first time, the user can continue accessing the server, and save the host public key on the client. When accessing the server again, the client will use the saved server host public key to authenticate the server. • Without first-time authentication, a client not configured with the server host public key will refuse to access the server. To enable the client to access the server, you must configure the server host public key and specify the public key name for authentication on the client in advance. Enabling the switch to support first-time authentication Step 1. Enter system view. Command system-view 2. Enable the switch to support first-time authentication. ssh client first-time [ enable ] Remarks N/A Optional. By default, first-time authentication is supported on a client. Disabling first-time authentication For successful authentication of an SSH client not supporting first-time authentication, the server host public key must be configured on the client and the public key name must be specified. To disable first-time authentication: Step 1. Enter system view. 2. Disable first-time authentication support. 3. Configure the server host public key. Command system-view undo ssh client first-time See "Configuring a client public key" Remarks N/A By default, first-time authentication is supported on a client. The method for configuring the server host public key on the client is similar to that for configuring client public key on the server. 186