Administrator Guide

Parameters
enable Enter the keyword enable to enable the challenge response authentication for
SSHv2.
Defaults Disabled.
Command Modes CONFIGURATION
Command
History
This guide is platform-specific. For command information about other platforms, see the relevant Dell
EMC Networking OS Command Line Reference Guide.
Version Description
9.11(0.0) Introduced on the S4810, S4820T, S3048ON, S3100 Series, S4048ON, S5000,
S6000, S6000ON, Z9500, Z9100ON, S6100ON, S6010ON, S4048TON,
C9000, and MXL.
Usage
Information
If both the challenge response authentication and password authentication methods are configured, the
challenge response authentication takes priority.
ip ssh cipher
Configure the list of ciphers supported on both SSH client and SCP.
Syntax
ip ssh cipher cipher-list
Parameters
cipher
cipher-list
Enter the keyword cipher and then a space-delimited list of ciphers that the SSH
client supports. The following ciphers are available.
aes256-ctr
aes256-cbc
aes192-ctr
aes192-cbc
aes128-ctr
aes128-cbc
3des-cbc
Defaults The default list of ciphers is in the order as shown below:
aes256-ctr
aes256-cbc
aes192-ctr
aes192-cbc
aes128-ctr
aes128-cbc
3des-cbc
Command Modes CONFIGURATION
Command
History
This guide is platform-specific. For command information about other platforms, see the relevant Dell
EMC Networking OS Command Line Reference Guide.
Version Description
9.10(0.1) Introduced on the S6010-ON and S4048T-ON.
9.10(0.0) Introduced on the S3148.
9.10(0.0) Introduced on the S6100ON, S6000, S6000ON, S5000, S4810, S4820T, S3048
ON, S4048ON, MXL, C9010, S3100 series, and Z9100-ON.
Usage
Information
You can select one or more ciphers from the list.
The default list of supported ciphers is same irrespective of whether FIPS mode is enabled or disabled.
Security 1411