Configuration Guide SSH Terminal Service Configuration
Compatible mode (supporting versions 1 and 2)
SSH user authentication timeout period
SSH user re-authentication times
User Authentication Configuration
1) For the consideration of the SSH connection security, the login without
authentication is forbidden. Therefore, in the login authentication of the users,
the login authentication mode must have password configured
(no-authentication login allowed for telnet).
2) The username and password entered every time must have lengths greater
than zero. If the current authentication mode does not need the username, the
username can be entered randomly but the entry length must be greater than
zero.
Enabling SSH Server
The SSH Server is disabled by default. To enable the SSH Server, run the
enable service ssh-server command in the global configuration mode while
generating SSH key.
Enter the global configuration mode.
enable service ssh-server
crypto key generate {rsa|dsa}
To delete the key, use the crypto key zeroize command rather than the [no]
crypto key generate command.
The SSH module does not support hot standby. For products supporting
management module hot standby, after the management module is switched
over, if no SSH key files are in the new main board, the crypto key generate
command must be used to regenerate the key in order to use the SSH.
Disabling SSH Server
When the SSH Server is enabled, if the public key on the server is deleted, the
SSH Server is automatically closed. To delete the public key, run no enable
service ssh-server in the global configuration mode to disable the SSH Server.
To Next Page
Loading...
