Manualshelf

7.0.8 Insight Remote Support Monitored Devices Configuration Guide

ManualsBrandsHP ManualsSoftwareHP Insight Remote Support Next Gen Software
211212213214215216217218219220
Monitored Devices Configuration Guide
Chapter 32: Configuring Provision-based Networking Switches
Option 2: Using Other Certificates
Prerequisites
l PuTTYgen used to generate a key pair if required.
l TFTP server used to move the public key to a Provision-based switch.
Copy the Certificate to the Switch
To copy the certificate to the Provision-based switch, complete the following steps:
1. Use PuTTYgen to create a key pair.
2.
Change the public key comment field in PuTTYgen to manager@IP for operator account access where
IP is the IP of the switch or manager@ip for manager account access.
3. Copy the public key to a file path that your TFTP server can see. (Refer to the TFTP server
documentation and server configuration for more information.)
4. In PuTTYgen, select Conversions Export OpenSSH Key to export the private key. Don’t set a
pass phrase. Name the private key PCPrivate.pem.
5. Telnet or SSH to the switch using username/password authentication.
6. Enter configuration mode:
configure
7. Turn off filetransfer using SSH:
no ip ssh filetransfer
8. Enable the TFTP client:
tftp client
9. Move the public key to the switch:
copy tftp pub-key-file <tftp_server_ip> <public_key_file> manager
10. Enable public key authentication:
aaa authentication ssh login public-key
11. Enable user/password authentication:
aaa authentication ssh enable local
12. Write the configuration and public key to memory:
wr mem
Add the SSH Protocol Credential to the Insight RS Console
To add the SSH protocol credential, complete the following steps:
HP Insight Remote Support (7.0.8)Page 217 of 248