Example: Configuring the device as an Stelnet server (password authentication)

Network configuration

As shown in Figure 127:

Figure 127: Network diagram

Procedure

  1. Configure the Stelnet server:

    # Generate RSA key pairs.

    <Switch> system-view
    [Switch] public-key local create rsa
    The range of public key modulus is (512 ~ 2048).
    If the key modulus is greater than 512, it will take a few minutes.
    Press CTRL+C to abort.
    Input the modulus length [default = 1024]:
    Generating Keys...
    ........................++++++
    ...................++++++
    ..++++++++
    ............++++++++
    Create the key pair successfully.
    

    # Generate a DSA key pair.

    [Switch] public-key local create dsa
    The range of public key modulus is (512 ~ 2048).
    If the key modulus is greater than 512, it will take a few minutes.
    Press CTRL+C to abort.
    Input the modulus length [default = 1024]:
    Generating Keys...
    .++++++++++++++++++++++++++++++++++++++++++++++++++*
    ........+......+.....+......................................+
    ...+.................+..........+...+.
    Create the key pair successfully.
    

    # Generate an ECDSA key pair.

    [Switch] public-key local create ecdsa secp256r1
    Generating Keys...
    .
    Create the key pair successfully.
    

    # Enable the Stelnet server.

    [Switch] ssh server enable
    

    # Assign an IP address to VLAN-interface 2. The Stelnet client uses this address as the destination for SSH connection.

    [Switch] interface vlan-interface 2
    [Switch-Vlan-interface2] ip address 192.168.1.40 255.255.255.0
    [Switch-Vlan-interface2] quit
    

    # Set the authentication mode to AAA for user lines.

    [Switch] line vty 0 63
    [Switch-line-vty0-63] authentication-mode scheme
    [Switch-line-vty0-63] quit
    

    # Create a local device management user named client001.

    [Switch] local-user client001 class manage
    

    # Set the password to aabbcc in plain text for local user client001.

    [Switch-luser-manage-client001] password simple aabbcc
    

    # Authorize local user client001 to use the SSH service.

    [Switch-luser-manage-client001] service-type ssh
    

    # Assign the network-admin user role to local user client001.

    [Switch-luser-manage-client001] authorization-attribute user-role network-admin
    [Switch-luser-manage-client001] quit
    

    # Create an SSH user named client001. Specify the service type as stelnet and the authentication method as password for the user.

    [Switch] ssh user client001 service-type stelnet authentication-type password
    
  2. Establish a connection to the Stelnet server:

    There are different types of Stelnet client software, such as PuTTY and OpenSSH. This example uses an Stelnet client that runs PuTTY version 0.58.

    To establish a connection to the Stelnet server:

    1. Launch PuTTY.exe to enter the interface shown in Figure 128.

    2. In the Host Name (or IP address) field, enter IP address 192.168.1.40 of the Stelnet server.

    3. Click Open.

      Figure 128: Specifying the host name (or IP address)

    4. Enter username client001 and password aabbcc to log in to the Stelnet server.