[Sysname] public-key local create dsa
# Create a VLAN interface on the switch and assign to it an IP address, which is used as the destination
address for the client to connect to the SFTP server.
[Sysname] interface vlan-interface 1
[Sysname-Vlan-interface1] ip address 192.168.0.1 255.255.255.0
[Sysname-Vlan-interface1] quit
# Specify the SSH authentication mode as
AAA
.
[Sysname] user-interface vty 0 4
[Sysname-ui-vty0-4] authentication-mode scheme
# Configure the protocol through which the remote user logs in to the switch as SSH.
[Sysname-ui-vty0-4] protocol inbound ssh
[Sysname-ui-vty0-4] quit
# Create a local user client001.
[Sysname] local-user client001
[Sysname-luser-client001] password simple abc
[Sysname-luser-client001] service-type ssh
[Sysname-luser-client001] quit
# Configure the authentication mode as
password
. Authentication timeout time, retry number, and
update time of the server key adopt the default values.
[Sysname] ssh user client001 authentication-type password
# Specify the service type as SFTP.
[Sysname] ssh user client001 service-type sftp
# Enable the SFTP server.
[Sysname] sftp server enable
2) Configure the SFTP client (switch A)
# Configure the IP address of the VLAN interface on switch A. It must be in the same segment with the
IP address of the VLAN interface on switch B. In this example, configure it as 192.168.0.2.
<Sysname> system-view
[Sysname] interface vlan-interface 1
[Sysname-Vlan-interface1] ip address 192.168.0.2 255.255.255.0
[Sysname-Vlan-interface1] quit
# Connect to the remote SFTP server. Enter the username
client001
and the password
abc
, and then
enter SFTP client view.
[Sysname] sftp 192.168.0.1
Input Username: client001
Trying 192.168.0.1 ...
Press CTRL+K to abort
Connected to 192.168.0.1 ...
The Server is not authenticated. Do you continue to access it?(Y/N):y
Do you want to save the server's public key?(Y/N):n
Enter password:
57-18