Device Security > Management Access > Server
Device Security
110
RM GUI HiSecOS EAGLE20/30
Release
3.0
09/2015
3.7.5 SSH
This tab allows you to enable/disable the SSH server in the device and
specify its settings required for SSH. The server works with SSH version 2.
The SSH server allows you to access the management functions of the
device remotely through the Command Line Interface. SSH connections are
encrypted.
To access the device and the connected external memory using SFTP or
SCP, you also need access to the SSH server. With an SFTP or SCP client,
e.g. WinSCP, you have the option of loading configuration files or a software
update to the device.
The SSH server identifies itself to the clients using its public RSA or DSA key.
When first setting up the connection, the client program displays the user the
fingerprint of this key. The fingerprint contains a hexadecimal number
sequence that is easy to check. When you make this number sequence
available to the users via a reliable channel, they have the option to compare
both fingerprints. If the number sequences match, the client is connected to
the correct server.
The device allows you to create the private and public keys (host keys)
required for RSA and DSA directly on the device. Otherwise you have the
option to copy your own keys to the device in PEM format.
As an alternative, the device allows you to load the DSA/RSA key (host key)
from an external memory upon restart. You activate this function in the
Basic
Settings > External Memory
dialog, "Enable Automatic SSH Key Upload"
field.
To Next Page
Loading...