Procedure 5-11: Secure shell configuration

- Overview

This section describes the commands you use to configure secure shell (SSH) access to the switch. Use SSH to access the switch from a remote management host. The system allows a maximum of five SSH sessions.

- Before you begin

You should have the following information available.

  • The SSH version (SSH-1 or SSH-2) you want to enable.

  • The type of key file you need to download, if required.

  • The name and location of the key file you are downloading.

  • The number of sessions allowed and timeout value.

Step
 
1

From the Navigation menu, select System → Secure Shell → Configuration.

Result:

The Secure Shell Configuration window opens.

2

Download the SSH key files.

SSH must be administratively disabled to download SSH key files, Admin Mode Disable and there can be no active SSH sessions.

At the bottom of the Secure Shell Configuration window, click on Download Host Keys. Download the required SSH key files using the procedure presented.

Result:

The Download File To Circuit Pack window opens.

Reference:

Procedure 5-7.5: Download File.

3

Configure the following parameters, as required.

Parameters:

  • Admin Mode - Select Enable or Disable to enable/disable the administrative mode of SSH. The currently configured value is shown when the web page is displayed. The default value is Disable.

    Equivalent CLI command: ip ssh server enable enables the IP secure shell server. ip ssh enables SSH access to the system.

  • SSH Version 1 - Select Enable or Disable to enable/disable Protocol Level 1 for SSH. The currently configured value is shown when the web page is displayed. The default value is Enable.

    Equivalent CLI command: ip ssh protocol [1] [2].

  • SSH Version 2 - Select Enable or Disable to enable/disable Protocol Level 2 for SSH. The currently configured value is shown when the web page is displayed. The default value is Enable.

    Equivalent CLI command: ip ssh protocol [1] [2].

  • SSH Connections Currently in Use - Display only.

  • Maximum number of SSH Sessions Allowed - Select the maximum number of inbound SSH sessions allowed on the switch. The currently configured value is shown when the web page is displayed. The range of acceptable values for this field is (0-5). Default is 5.

    Equivalent CLI command: sshcon maxsessions <value>.

  • SSH Session Timeout (minutes) - Select the inactivity timeout value for incoming SSH sessions to the switch. The acceptable range for this value is (1-160) minutes. Default is 5.

    Equivalent CLI command: sshcon timeout <value>.

4

Click Submit to send the updated screen to the switch.

End of steps

Copyright © 2011 Alcatel-Lucent. All rights reserved.