1-11Create an SSH user, andspecify an authentication typefor itssh user usernameauthentication-type { all |password | password-publickey| publickey }are used and differentauthentication types arespecified, the authenticationtype specified with the sshuser authentication-typecommand takes precedence.z For password authentication type, the username argument must be consistent with the valid username defined in AAA; for publickey authentication, the username argument is the SSH local username, so that there is no need to configure a local user in AAA.z If the default authentication type for SSH users is password and local AAA authentication isadopted, you need not use the ssh user command to create an SSH user. Instead, you can usethe local-user command to create a user name and its password and then set the service type ofthe user to SSH.z If the default authentication type for SSH users is password and remote authentication (RADIUSauthentication, for example) is adopted, you need not use the ssh user command to create anSSH user, because it is created on the remote server. And the user can use its username andpassword configured on the remote server to access the network.z Under the publickey authentication mode, the level of commands available to a logged-in SSHuser can be configured using the user privilege level command on the server, and all the userswith this authentication mode will enjoy this level.z Under the password or password-publickey authentication mode, the level of commandsavailable to a logged-in SSH user is determined by the AAA scheme. Meanwhile, for differentusers, the available levels of commands are also different.z Under the all authentication mode, the level of commands available to a logged-in SSH user isdetermined by the actual authentication method used for the user.Specifying a Service Type for an SSH User on the ServerAt present, the switch supports two service types for SSH: stelnet (secure Telnet) and SFTP.z The secure Telnet service is a basic application of SSH protocol. It uses the secure channel ofSSH to provide remote login.z The SFTP service is an extended application of SSH protocol. It uses the secure channel of SSHto perform remote FTP operations.Follow these steps to specify the service type for an SSH user:To do... Use the command... RemarksEnter system view system-view —
