1. Overview
Normally, Network Administrators sit on their desk and work with network devices using remote SSH from their computer. It is just sometime that they have to connect the console and work directly the the network devices.
In this tutorial will guide you about how to configure SSH remote management on Huawei switch model S5700.
2. Prerequisites
In this article, it is presumed that:
a. You have already configured an IP address on the switch
b. You have a direct console access to switch
3. Configure SSH Remote Management
We can start the first step with VTY parameters setting. Login to the switch with the console and execute the following commands in the terminal.
] user-interface vty 0 4
authentication-mode aaa
protocol inbound ssh
Next step, we need to enable SSH service which is called Stelnet server on Huawei device and this service is disabled by default.
] stelnet server enable
Now we need to configure a user name and password for SSH remote login in AAA parameters. In the following configuration will create account name “netadmin” and password is “1111”.
] aaa
local-user netadmin password cipher 1111
local-user netadmin privilege level 15
local-user netadmin service-type ssh
The next step is to defining the SSH user parameters as shown below.
] ssh user netadmin
] ssh user netadmin authentication-type password
] ssh user netadmin service-type stelnet
Finally is to generate a strong SSH encryption with 2048 bites as the following to replace the existing encryption. Exit and save the configuration.
] rsa local-key-pair create
] quit
> save
4. Test Remote SSH
Start Putty program and enter the management IP address of the switch to do the remote SSH to Huawei switch on eNSP topology and we should get a successful result as the following.
No comments:
Post a Comment