After first login is enabled on the SSH client (STelnet client in this case), the client does not check the validity of the RSA, DSA, or ECC public key for the SSH server when logging in to the SSH server for the first time.
After first login is enabled on the SSH client (STelnet client in this case), the client does not check the validity of the RSA, DSA, SM2, or ECC public key for the SSH server when logging in to the SSH server for the first time. After the first login, the SSH client automatically saves the RSA, DSA, SM2, or ECC public key for subsequent login authentication.
If first login is disabled on an SSH client, the client cannot log in to the SSH server, because the validity check of the RSA, DSA, SM2, or ECC public key will fail. If the STelnet client needs to log in to the SSH server for the first time, enable first login or configure the client to assign an RSA, DSA, SM2, or ECC public key to the server in advance. For details, see Configuring First Login to the SSH Server (Configuring the SSH Client to Assign the Public Key to the SSH Server).
Perform the following steps on the router that functions as an SSH client:
The system view is displayed.
First login is enabled on the SSH client.
The configuration is committed.