User guide
Configuring SSH Version 2 for Secure Communication
Chapter 12 Configuring Security Features 62
3. When the system prompts you to enter the new password again, type it in and then press Enter.
Example
In this example, the newpass command initiates a dialog with Digi One/PortServer TS 2/4 that results in the user
being assigned a password.
newpass name=edm1001
Configuring SSH Version 2 for Secure Communication
This section discusses how to configure a user for SSH version 2 encryption.
This feature is only available for the following devices.
Password Protection
To configure simple password authentication for an SSH user, no SSH-specific configuration is required. Simply
configure a user by entering the following commands:
set user name=name password=on
newpass name=name
where name is a user name
Example
set user name=ssh-user1
newpass name=ssh-user1
Using a Public Key
To enable public key authentication and to associate a public key with a user, enter the following command:
set user name=name loadkey=host:key
where
• name is the name of a user
• host is either an IP address or DNS name of a host running TFTP that holds
• key is the name of a file that contains the DSA public key. If your host’s implementation requires a complete
path to the file, specify the path here as well.
Example: set user name=secure loadkey=143.191.2.34:ssh-file
Making Reverse SSH Connections to Ports
The convention used to identify a port for a reverse SSH connection to a Digi device is to use 2500 + the port
number. See the examples that follow for more information.
Example: Reverse SSH Connection to Port 1
ssh 192.1.2.3 2501
Example: Reverse SSH Connection to Port 4
ssh 192.1.2.3 2504
Device Required Hardware Required Firmware
Digi One TS 50000771-01A or higher 82000747a or higher
PortServer TS 2 50000771-02A or higher
PortServer TS 4 50000771-03A or higher