CLI Reference Guide-R02

ManualsBrandsEdgecore Networks ManualsEnterpriseL2+/Lite L3 10G Ethernet Aggregation Switch with 2 40G Uplinks

241

242

243

244

245

246

247

248

249

250

Table Of Contents

Chapter 8

| Authentication Commands

Secure Shell

– 249 –

Default Setting

Disabled

Command Mode

Global Configuration

Command Usage

◆ The SSH server supports up to eight client sessions. The maximum number of

client sessions includes both current Telnet sessions and SSH sessions.

◆ The SSH server uses RSA for key exchange when the client first establishes a

connection with the switch, and then negotiates with the client to select either

DES (56-bit) or 3DES (168-bit) for data encryption.

◆ You must generate RSA host keys before enabling the SSH server.

Example

Console#ip ssh crypto host-key generate

Console#configure

Console(config)#ip ssh server

Console(config)#

Related Commands

ip ssh crypto host-key generate (250)

show ssh (253)

ip ssh timeout This command configures the timeout for the SSH server. Use the no form to

restore the default setting.

Syntax

ip ssh timeout seconds

no ip ssh timeout

seconds – The timeout for client response during SSH negotiation.

(Range: 1-120)

Default Setting

120 seconds

Command Mode

Global Configuration

Command Usage

The timeout specifies the interval the switch will wait for a response from the client

during the SSH negotiation phase. Once an SSH session has been established, the

timeout for user input is controlled by the exec-timeout command for vty sessions.