Configuring the switch for SSH authentication
Either method you choose for this task results in authentication of the switch public key by an SSH client. However only Option B results in the switch also authenticating the client's public key.
-
Option A: Configuring SSH access for password-only SSH authentication
When configured with this option, the switch uses its public key to authenticate itself to a client, but uses only passwords for client authentication.
-
Option B: Configuring the switch for client Public-Key SSH authentication
When configured with this option, the switch uses its public key to authenticate itself to a client, but the client must also provide a client public key for the switch to authenticate. This option requires the additional step of copying a client public-key file from a TFTP or SFTP server into the switch.
Using this option results in the switch also authenticating the client's public key.