01 进入系统编辑视图
system-view
Enter system view, return user view with return command.
02 创建本地RSA密钥对
[HUAWEI]rsa local-key-pair creat
The key name will be:HUAWEI_Host
The range of public key size is (2048 ~ 2048).
NOTE: Key pair generation will take a short while.
03 配置vty界面支持的登录协议
[HUAWEI] user-interface vty 0 4
[HUAWEI-ui-vty0-4]authentication-mode aaa
Warning: The level of the user-interface(s) will be the default level of AAA users, please check whether it is correct. After the authentication mode is set to AAA, you need to enter the user name and password to log in.
[HUAWEI-ui-vty0-4]protocol inbound all
[HUAWEI-ui-vty0-4]commit
04 创建SSH用户xxx
[HUAWEI-ui-vty0-4]ssh user abc01
Info: Succeeded in adding a new SSH user.
[HUAWEI]ssh user abc01 authentication-type password
05 在AAA视图下创建同名的local-user用户
[HUAWEI]aaa
[HUAWEI-aaa]local-user abc01 password cipher ********
Info: A new user is added
[HUAWEI-aaa]local-user abc01 service-type ssh
Info: The user josen01's password has been changed to be irreversible.
[HUAWEI-aaa]local-user abc01 level 3
[HUAWEI-aaa]q
06 配置SSH用户的服务方式
[HUAWEI]ssh user abc01 service-type all
若该步骤不做,可能会导致ssh连接时报shell request failed on channel 0错误
07 使能ssh服务
[HUAWEI]stelnet server enable
Info: Succeeded in starting the STelnet server.
08 提交保存
[HUAWEI]commit
[HUAWEI]