Switches, Hubs, and Modems
cancel
Showing results for 
Search instead for 
Did you mean: 

configuration of ssh in a hp procurve 2650

Doutreleau Eric
Occasional Contributor

configuration of ssh in a hp procurve 2650

hi

i m using an HP procurve 2650 and i would like to enable ssh access.
i read the documenation access security guide and in the page 6-26 it s writtent than one can enable login through public key and login password.
i should type
aaa authentication ssh login public-key local.

but when i type this command i got the following output
Not legal combination of authentication methods

how can i enable that?
5 REPLIES
CynthiaOv
Occasional Visitor

Re: configuration of ssh in a hp procurve 2650

What happens when you type the following command
show crypto client-public-key [babble | fingerprint]

Do you see your keys, or does it say key corrupt or not found?

Doutreleau Eric
Occasional Contributor

Re: configuration of ssh in a hp procurve 2650

yes i can see my keys

i got

Manager keys:

0,grocanar@rezo.int-evry.fr ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAIEAwRqDBcjuuNbWWPxhmlyv1uifzPJJ5ORrJsIDMQ7YLQKGO66cFtO0DMR3H88T
LuPJBAg7VsI7G8YKkxnEb4AGtdq6IW5iQaAzmz94ENrNAGnuv+hogevqUVEohQt3lQs9+YCf+adHroX9JXaWyaTpnm+EZ7TEhskAYjbDwWf7aSM=

Operator keys:

0,grocanar@rezo.int-evry.fr ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAIEAwRqDBcjuuNbWWPxhmlyv1uifzPJJ5ORrJsIDMQ7YLQKGO66cFtO0DMR3H88T
LuPJBAg7VsI7G8YKkxnEb4AGtdq6IW5iQaAzmz94ENrNAGnuv+hogevqUVEohQt3lQs9+YCf+adHroX9JXaWyaTpnm+EZ7TEhskAYjbDwWf7aSM=

then my key is valid for operator and manager account
Dmitry G. Spitsyn
Trusted Contributor

Re: configuration of ssh in a hp procurve 2650

Hi, Eric !
The last option in your command is the secondary PASSWORD authentication method.
Have you set a password for an operator level?
Try to use none instead of local.
BUT BE SURE NOT TO BE UNLOCKED OUT OF YOUR DEVICE.

Good luck,
Dmitry
Doutreleau Eric
Occasional Contributor

Re: configuration of ssh in a hp procurve 2650

i don't understand your answer

i have set a password for operator but i don't want to log as an operator
i want to log as manager with a ssh key for some people and with the password for other people that don't use ssh a lot.
Dmitry G. Spitsyn
Trusted Contributor

Re: configuration of ssh in a hp procurve 2650

Public-key authentication is valid only for an operator level.
After an user has logged in as an operator he/she should use enable command to get a manager privilege level.
For your case you can configure:

#aaa authentication ssh login public-key none
#aaa authentication ssh enable local none

Good luck,
Dmitry