Ethernet Fabric (VDX, CNA)

Reply
Occasional Contributor
Posts: 10
Registered: ‎06-01-2016

Questions for using ssh on vdx6740

Hi,

 

I am new to brocade. I am trying to setup ssh to vdx6740 and I am not able to 

  • import ssh key
  • run command from host to switch over ssh.

switch OS firmware ver is NOS 5.0.1d

 

  1. When trying to setup ssh I use following command,
    1. login as admin, 
    2. certutil import sshkey user myuser directory /tmp file mykey.pub host 10.0.0.1 login me  <cr>
    3. I got prompt for password and after enter passowrd I got,
    4. "rbridge-id-1: % Error: Only .pub formatted SSH public key file can be imported."
    5. So what is right command to import ssh key?
  2. when trying from host issue command,
    1. myhost $ ssh admin@my-vdx-switch show version
    2. I got a return, "FATAL: tty name does not exist on the system.Exiting."
    3. and no result from "show version"
    4. So does it mean using ssh from remote host run command is not supported?

 

Thanks in advance for answer my questions.

 

Ping.

External Moderator
Posts: 4,973
Registered: ‎02-23-2004

Re: Questions for using ssh on vdx6740

->certutil import sshkey user myuser directory /tmp file mykey.pub host 10.0.0.1 login me  <cr>

 

from you post, show as you use the wrong syntax.

 

see below marked in red

 

From NOS Command Reference Guide, 

 

certutil import sshkey

Imports the SSH public key for an SSH user from the remote host using the mentioned login credentials

and path name.

Syntax certutil import sshkey host remote_ip_address directory ssh_public_key_path user user_acct

password password login login_id [ rbridge-id { rbridge-id | all } ]

no certutil sshkey [ rbridge-id { rbridge-id | all } ]

Parameters directory path

Specifies the path to the certificate.

file filename

Specifies the SSH public key with a .pub extension.

host remote_ip

Specifies the IP address of the remote host.

login login_id

Specifies the login name in the remote host.

password password

Specifies the password to access the remote host.

rbridge-id

Specifies an RBridge or all RBridges.

rbridge-id

Specifies an RBridge ID.

all

Specifies all RBridges.

user user_acct

Specifies the user name to access the remote host.

Modes Privileged EXEC mode

Usage Guidelines Enter no certutil sshkey user to delete the SSH public key a specified user.

Examples The following command deletes the SSH public key for "testuser."

TechHelp24
Occasional Contributor
Posts: 10
Registered: ‎06-01-2016

Re: Questions for using ssh on vdx6740

Hi Antonio,

 

Thanks for taking time to answer myquestion.

 

I tried with your suggestion, but it did not work. Also I am not sure what do you mean I have wrong syntax.

 

I tried with,

 

certutil import sshkey host 10.0.30.229 directory /tmp user me login pchien rbridg2-id all

 

I got a error, "Error: missing parameter: certutil import sshkey file", so I add "file",

 

certutil import sshkey host 10.0.30.229 directory /tmp user me login pchien file mykey.pub rbridge-id all

 

I got old error "rbridge-id-1: % Error: Only .pub formatted SSH public key file can be imported."

External Moderator
Posts: 4,973
Registered: ‎02-23-2004

Re: Questions for using ssh on vdx6740

[ Edited ]

are you in VCS Mode ?

 

if yes, you must enter RBridge config mode before issue the command.

 

unfortunately I cannot figured out the command, i don't have VDX Platforms.

 

is this a typo ?

 

-> rbridg2-id

TechHelp24
Occasional Contributor
Posts: 10
Registered: ‎06-01-2016

Re: Questions for using ssh on vdx6740

Thanks.

 

Yes. that is a typo. I corrected in my commnad, but cut and paste from a wrong line.

Occasional Contributor
Posts: 10
Registered: ‎06-01-2016

Re: Questions for using ssh on vdx6740

Hi,

 

does following tell I am vcs mode? (Sorry I am very new to brocade)

 

 

VDX6740-top-RB1# show vcs detail
Config Mode : Distributed
VCS Mode : Logical Chassis
VCS ID : 10
VCS GUID : c2fbf1b8-3975-4181-914d-38e57a44faa8
Total Number of Nodes : 2
Nodes Disconnected from Cluster : 0
Cluster Condition : Good
Cluster Status : All Nodes Present in the Cluster
Node :1

External Moderator
Posts: 4,973
Registered: ‎02-23-2004

Re: Questions for using ssh on vdx6740

indeed, it show as you are in VCS.

 

->VCS ID : 10

->Total Number of Nodes : 2

 

however AFAIR, when you issue the command

#show vcs

you should get more details

 

or is the output posted truncated ?

 

 

TechHelp24
Occasional Contributor
Posts: 10
Registered: ‎06-01-2016

Re: Questions for using ssh on vdx6740

Hi,

 

Thanks.

 

Yes, there are more detail, I cut off part that have site specific information for security reason.

 

Any information you are looking for? may be I can put it here if qhat you looking for is more genaric in natual.

 

Ping.

External Moderator
Posts: 4,973
Registered: ‎02-23-2004

Re: Questions for using ssh on vdx6740

->Any information you are looking for? 

 

No, simple ask because you should have a line in the output "Rbridge-Id  : number"

 

just a curiosity can you try follow:

 

#show users rbridge-id all

 

or

 

#show users rbridge- number

 

I believe when VCS is Distributed the user must be active in order to import a certificate.

 

If no, try first to import a cert with default credential

 

 

 

TechHelp24
Occasional Contributor
Posts: 10
Registered: ‎06-01-2016

Re: Questions for using ssh on vdx6740

sure,

 

show users rbridge-id all
**USER SESSIONS**
RBridge
ID Username Role Host IP Device Time Logged In
1 admin admin 10.0.30.229 Cli 2016-06-01 13:29:44
**LOCKED USERS**
RBridge
ID Username
no locked users

Join the Community

Get quick and easy access to valuable resource designed to help you manage your Brocade Network.