SSH

QQ截图20240522163645

QQ截图20240522163801

QQ截图20240522170905

1.server配置rsa
[server]rsa local-key-pair create
[server]dis rsa local-key-pair public(查看)
2.全局开启stelnet
[server]stelnet server enable
3.vty接口配置
[server]user-interface vty 0 4
[server-ui-vty0-4]authentication-mode aaa
[server-ui-vty0-4]protocol inbound ssh
4.创建用户名和密码
[server]aaa
[server-aaa]local-user client01 password cipher huawei123
[server-aaa]local-user client01 service-type ssh
[server-aaa]local-user client01 privilege level 3
(同理创建client02)
5.设置服务端口号
[server]ssh server port 1025
6.客户端上创建rsa本地密钥
[client01]rsa local-key-pair create
7.将客户端密钥复制到服务器
[server]rsa peer-public-key client01
[server-rsa-public-key]public-key-code begin
Enter “RSA key code” view, return last view with “public-key-code end”.
[server-rsa-key-code]
[server-rsa-key-code]3047
[server-rsa-key-code] 0240
[server-rsa-key-code] BB44D49F 0A455501 33FC2A58 9EA52FF3 7C3A29A5
[server-rsa-key-code] 43A29D63 1D74F975 FAF91466 EF0D2222 A8AE038B
[server-rsa-key-code] 2DAA1CE0 5F22B5D9 F6D0F2F0 EB0747B9 4D916AE1
[server-rsa-key-code] 5B83DE2D
[server-rsa-key-code] 0203
[server-rsa-key-code] 010001
[server-rsa-key-code]public-key-code end
[server-rsa-public-key]peer-public-key end
[server]ssh user client01 assign rsa-key client01
8.客户端上开启SSH首次登录验证
[client01]ssh client first-time enable

[client01]stelnet 2.2.2.2 1025(登录)