Juniper JUNOS OS 10.4 - PROTECTED SYSTEM DOMAIN Configuration Manual
Download Configuration manual of Juniper JUNOS OS 10.4 - PROTECTED SYSTEM DOMAIN Other for Free or View it Online on All-Guides.com.
Brand: Juniper
Category: Other
Type: Configuration manual for Juniper JUNOS OS 10.4 - PROTECTED SYSTEM DOMAIN
Pages: 290
Download Juniper JUNOS OS 10.4 - PROTECTED SYSTEM DOMAIN Configuration manual
Generating the Host Key
SSH access requires a host key and a user public key.
To generate the host key:
1. Use an existing username and password to connect to the JCS management module
serial port. For example:
tcsh-1:telnet bcgmm1-con
In this example, the serial port is connected to a telnet server port identified as
bcgmm1-con.
2. Use the env command to specify mm[1] as the configuration target. For example:
system> env —T mm[1]
3. Use the sshcfg command to generate a host key. For example:
system:mm[1]> sshcfg —hk gen
It takes about 1 minute to generate a host key.
4. You can use the displaylog command to monitor host key generation. For example:
system:mm[1]> displaylog —f
5. Once the host key is generated, use the sshcfg command to enable SSH for the JCS
CLI. For example:
system:mm[1]> sshcfg —cstatus enabled
Adding the User Public Key
To generate a user public key:
1. See the “Generating the Host Key” section to generate a host key.
2. Locate the /.ssh/authorized_keys file and copy your public key from this file.
3. Use the users command to add your public key.
You copy the public key from the authorized_keys file and paste it on the command
line. For example:
system:mm[1]> users —2 —pk —1 —add paste-key-here
4. Issue the users command to verify that the public key has been installed. For example:
system:mm[1]> users —2
- n chang
- a Role:supervisor
...
Number of SSH public keys installed for this user: 1
Last login: 1/28/08 09:26:59
5. Log out, and then use SSH to log back in. For example:
Copyright © 2010, Juniper Networks, Inc.46
JUNOS 10.4 Protected System Domain Configuration Guide