FAQ-SSH登录失败的可能原因

发布时间:  2014-09-19 浏览次数:  127 下载次数:  0
问题描述
SSH登录失败的可能原因
解决方案
1. 确认本地RSA密钥对是否生成。
[USG9000] display rsa local-key-pair public
2. 确认SSH客户端和SSH服务器(USG9000)的SSH版本是否一致,缺省情况下USG9000 V300R001的SSH版本为SSH2.0,如果不一致,可以在USG9000上配置如下命令,开启SSH服务器兼容低版本功能。
[USG9000] ssh server compatible-ssh1x enable
3. 确认VTY用户界面的协议类型是否配置为SSH或ALL。
[USG9000-ui-vty0-14] protocol inbound ssh
4. 确认是否正确配置了SSH用户,例如:
AAA下配置SSH用户名和密码:
[USG9000-aaa] local-user test irreversible-password             
Please configure the login password(8-16)                                                                                           
Enter Password:                                                                                                                     
Confirm Password:                                                                                                                   
Submit password successfully.     
Info: The service types terminal ssh web telnet and ftp are available for the user, but telnet and ftp are not secure access type.
配置SSH用户名:
[USG9000] ssh user test
[USG9000] ssh user test authentication-type password
[USG9000] ssh user test authorization-cmd aaa

END