Aruba & ProVision-based
1748261 Members
3619 Online
108760 Solutions
New Discussion

Re: Aruba 3810m - ip ssh public-key (not working)

 
SOLVED
Go to solution
Jack_the_coiner
Occasional Contributor

Aruba 3810m - ip ssh public-key (not working)

I am configuring my new set of Aruba switches in a stack, and after getting the stack upgraded to KB.16.02.0009 and stacked I like to set up authentication via SSH keys.  Normally on the HE e3800 I use a file that I can tftp over in this manner:

copy tftp pub-key-file 192.168.1.22 pubkeys_mine manager
000M Download failed: invalid key in key file.

 Not so fast....that doesn't work with these Arubas.  Next I tried to use this command to load them in one at a time:

 # ip ssh public-key manager 'ssh-rsa AAAAB3NzaC1yc2EAAAADAQ
 ABAAABAQC2Uedp8iKvwwbrae7gLt4F0coHXVrILq866VrzjODP2cJOOUg+fuR0IyjKXdyJ8HhNyRESJ+
 j4MicI/aN+vCOD6SKlC3VJIfl3bODtHwXbJP7NGpqaOygNIdzBm65DQ4GK7i/khjUfSy0VbP83Zf7tru
 v4R1BcRp8VDUAn+xU9qc+VNC4OkVmWBqxUk3SgA1Znp1mwda/drQXLRDGcCdrzf3tDNp5Xk878SI6K5J
 R/0y9mImyXK/ri6YhCYL+r28/Nj4gRtGZoUJcabrnRHVg67PmctF4VkII1WhxRMZkD5jia8B1wk6KwDo
 CO6pZ/lGGjfLli/3IwxxwyhZi5awPN'
 Invalid key.

Again not working.  The guide indicates that this should work.  Can anyone tell me what exactly is wrong with my keys or perhaps the form of the command I am using? 

2 REPLIES 2
Jack_the_coiner
Occasional Contributor
Solution

Re: Aruba 3810m - ip ssh public-key (not working)

Using only the keys listed one per line in a file worked for the HP e3800, but the Aruba requires single quotes and a comment at the end of the line.  This way:

'ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQC7ZSzrPN+zUadGg1BK72vZcM9GlCMKHDdh0+CM/c/KgpKvMNTy2SxDQJ9W0Z/Id5hZ2i3OLCCZ8xBnEEgqBzxg/OTgNj+5jxm3Z5Jnxsq8MUaHa3t3u+tm0GbLPQsBba2CeOviLGW/WMyrDfgVs1cROy6py+yN3I6qJuI9iBxP49/P/xa+7QISQ/MZwHxjBP0xCSJj8GmEUAApb4cb5DYOenIkQBFPXrd2dK1v1THnmgi8pLURkT7auolUHdIDInusSvTYhbzlI0yQT/kuj6BEmOuPz5879XsyDkAQ7NDuuNhX5JFoiHP5CRE0a/jv47ERTl+kcPEdpGRfo9pAcPjz paul@rackspace'

You must format each line that way, and then you can use the TFTP method to load in the keys.  This is not mentioned in the access and security guide.

parnassus
Honored Contributor

Re: Aruba 3810m - ip ssh public-key (not working)

Good catch!

Maybe providing some documentation feedback to HPE would be great: see here.

Probably you were referring to May 2016 updated releases of:


I'm not an HPE Employee
Kudos and Accepted Solution banner