Compare commits
4 Commits
ae9eb9ac88
...
292ffa0b28
Author | SHA1 | Date |
---|---|---|
Jon Sands | 292ffa0b28 | |
Jon Sands | 9bf146b69f | |
Derek LaHousse | a25b7353f5 | |
Derek | d68c64a41a |
|
@ -137,13 +137,15 @@ ip ssh pub-key-file tftp 192.168.1.8 public.key
|
|||
```
|
||||
You shouldn't need to be told basic key management if you're following this section, but just in case - copy your private key to the proper location on the *nix machine you'll be SSH'ing from, or if you're on windows, load it using [pageant](https://www.chiark.greenend.org.uk/~sgtatham/putty/latest.html). Now when you SSH to the switch, it will authenticate using your private key.
|
||||
|
||||
On linux and macOS you'll want to add these lines to your ```~\.ssh\config``` file. IdentitiesOnly is to prevent ssh-agent from offering any other bigger (> 2048) keys first that will terminate the connection negotiation early. IdentityFile will use only this key for this connection. KexAlgorithms sets a key exchange algorithm that the older ICX6xxx series accepts:
|
||||
On linux and macOS you'll want to add these lines to your ```~\.ssh\config``` file. IdentitiesOnly is to prevent ssh-agent from offering any other bigger (> 2048) keys first that will terminate the connection negotiation early. IdentityFile will use only this key for this connection. KexAlgorithms sets a key exchange algorithm that the older ICX6xxx series accepts. PubkeyAcceptedKeyTypes and HostKeyAlgorithm must be set as well, to match what the older ICX6xxx can offer:
|
||||
|
||||
```
|
||||
Host <switch-ip>
|
||||
IdentitiesOnly yes
|
||||
IdentityFile ~/.ssh/private_key
|
||||
KexAlgorithms +diffie-hellman-group1-sha1
|
||||
PubkeyAcceptedKeyTypes=+ssh-rsa
|
||||
HostKeyAlgorithms=+ssh-rsa
|
||||
```
|
||||
|
||||
|
||||
|
|
Loading…
Reference in New Issue