SSH
ssh server enable Enables the SSH server. |
||
Syntax Description |
N/A |
|
Default |
Enabled |
|
Configuration Mode |
config |
|
History |
1.5 |
|
Example |
|
|
Related Commands |
show ssh server |
|
Notes |
Disabling SSH server does not terminate existing SSH sessions, it only prevents new ones from being established. |
ssh server host-key {<key type> {private-key <private-key>| public-key <public-key>} | generate} Manipulates host keys for SSH. |
||
Syntax Description |
key-type |
|
private-key |
Sets new private-key for the host keys of the specified type |
|
public-key |
Sets new public-key for the host keys of the specified type |
|
generate |
Generates new RSA and DSA host keys for SSH |
|
Default |
SSH keys are locally generated |
|
Configuration Mode |
config |
|
History |
1.5 |
|
Example |
|
|
Related Commands |
show ssh server |
|
Notes |
ssh server listen {enable | interface <inf>} Enables the listen interface restricted list for SSH. If enabled, and at least one non-DHCP interface is specified in the list, the SSH connections are only accepted on those specified interfaces. |
||
Syntax Description |
enable |
Enables SSH interface restrictions on access to this system |
interface |
Adds interface to SSH server access restriction list |
|
Default |
SSH listen is enabled |
|
Configuration Mode |
config |
|
History |
1.5 |
|
Example |
|
|
Related Commands |
show ssh server |
|
Notes |
ssh server min-version <version> Sets the minimum version of the SSH protocol that the server supports. |
||
Syntax Description |
version |
Values: 1 or 2 |
Default |
2 |
|
Configuration Mode |
config |
|
History |
1.5 |
|
Example |
|
|
Related Commands |
show ssh server |
|
Notes |
ssh server ports {<port1> [<port2>...]} Specifies which ports the SSH server listens on. |
||
Syntax Description |
port |
Port number in [1...65535] |
Default |
22 |
|
Configuration Mode |
config |
|
History |
1.5 |
|
Example |
|
|
Related Commands |
show ssh server |
|
Notes |
|
ssh server x11-forwarding enable Enables X11 forwarding on the SSH server. |
||
Syntax Description |
N/A |
|
Default |
Disabled |
|
Configuration Mode |
config |
|
History |
1.5 |
|
Example |
|
|
Related Commands |
show ssh server |
|
Notes |
ssh client global {host-key-check <policy>} | known-host <known-host-entry>} Configures global SSH client settings. |
||
Syntax Description |
host-key-check |
Sets SSH client configuration to control how host key checking is performed. This parameter may be set in 3 ways.
|
known-host |
Adds an entry to the global known-hosts configuration file. The entry consists of "<IP> <key-type> <key>". |
|
Default |
host-key-check – ask, no keys are configured by default |
|
Configuration Mode |
config |
|
History |
1.5 |
|
Example |
|
|
Related Commands |
show ssh client |
|
Notes |
ssh client user <username> {authorized-key sshv2 <public key> | identity <key type> {generate | private-key [<private key>] | public-key [<public key>]} | known-host <known host> remove} Adds an entry to the global known-hosts configuration file, either by generating new key, or by adding manually a public or private key. |
||
Syntax Description |
username |
The specified user must be a valid account on the system. Possible values: admin, monitor, xmladmin, and xmluser. |
authorized-key sshv2 |
Adds the specified key to the list of authorized SSHv2 RSA or DSA public keys for this user account. These keys can be used to log into the user's account. |
|
identity |
Sets certain SSH client identity settings for a user, dsa2 or rsa2 |
|
generate |
Generates SSH client identity keys for specified user |
|
private-key |
Sets private key SSH client identity settings for the user |
|
public-key |
Sets public key SSH client identity settings for the user |
|
known-host |
Removes host from user's known host file |
|
Default |
No keys |
|
Configuration Mode |
config |
|
History |
1.5 |
|
Example |
|
|
Related Commands |
show ssh client |
|
Notes |
If a key is being pasted from a cut buffer and was displayed with a paging program, it is likely that newline characters have been inserted, even if the output was not long enough to require paging. One can specify "no cli session paging enable" before running the "show" command to prevent the newlines from being inserted. |
slogin [<slogin options>] <hostname> Invokes the SSH client. The user is returned to the CLI when SSH finishes. |
||
Syntax Description |
slogin options |
usage: slogin [-1246AaCfgkNnqsTtVvXxY] [-b bind_address] [-c cipher_spec] [-D port] |
Default |
N/A |
|
Configuration Mode |
config |
|
History |
1.5 |
|
Example |
|
|
Related Commands |
||
Notes |
show ssh client Displays the client configuration of the SSH server. |
||
Syntax Description |
N/A |
|
Default |
N/A |
|
Configuration Mode |
Any configuration mode |
|
History |
1.5 |
|
Example |
|
|
Related Commands |
ssh client global |
|
Notes |
show ssh server Displays SSH server configuration. |
||
Syntax Description |
N/A |
|
Default |
N/A |
|
Configuration Mode |
Any configuration mode |
|
History |
1.5 |
|
Example |
|
|
Related Commands |
ssh server |
|
Notes |