Comware Based
1828411 Members
3983 Online
109977 Solutions
New Discussion

Need ssh allow for one ip

 
AshishKumar86
Occasional Visitor

Need ssh allow for one ip

Hi Team,

In my invirnment have 75 HP 5130 model switches, Our requirement is that we have to provide highly security Network Switches and access . I have disabled Telnet and enabled only SSH. Now our requirement is that we want to allow SSH with a single ip only. I mean only ssh can access with network admin system . So help me to complete my task and also share /suggestion how can I secure my network switches.


 

 

1 REPLY 1
jmpk
HPE Pro

Re: Need ssh allow for one ip

Hi @AshishKumar86 

I request you to check check below configuration guide where you can mention the source IP or interface if you like to allow only one IP to access the device  ( refer page 319 )

I have provided a sample configuration for your reference as well 

https://support.hpe.com/hpesc/public/docDisplay?docId=c04771715&docLocale=en_US

ssh server enable -- > Enable SSH 

local-user admin class manage -->  To Create local user 
password hash <>
service-type ssh terminal
authorization-attribute user-role network-admin
authorization-attribute user-role network-operator

line class vty
authentication-mode scheme
user-role network-operator
protocol inbound ssh


I work for HPEAccept or Kudo