Ssh Services - Cisco MDS 9000 Series Configuration Manual

Configuring SSH Services
A secure SSH connection, with rsa key is available as default on all Cisco MDS 9000 Series Switches. If you
require a secure SSH connection with a dsa key, you need to disable the default SSH connection, generate a
dsa key, and then enable the SSH connection (see the
section).
Use the ssh key command to generate a server key.
Caution
If you are logging in to a switch through SSH and you have issued the aaa authentication login default none
command, you must enter one or more key strokes to log in. If you press the Enter key without entering at
least one keystroke, your log in will be rejected.
This section includes the following topics:
•
•
•
•
•
•
•
•
•
•

SSH Services

Secure Shell (SSH) is a protocol that provides a secure, remote connection to the Cisco NX-OS CLI. SSH
provides more security for remote connections than Telnet does by providing strong encryption when a device
is authenticated. You can use SSH keys for the following SSH options:
• SSH2 using RSA
• SSH2 using DSA
SSH Services, on page 155
Generating the SSH Server Key Pair , on page 156
Specifying the SSH Key, on page 157
Overwriting a Generated Key Pair, on page 158
Configuring the Maximum Number of SSH Login Attempts, on page 159
Clearing SSH Hosts, on page 160
Enabling SSH or Telnet Service , on page 161
Displaying SSH Protocol Status, on page 161
SSH Authentication Using Digital Certificates, on page 162
Passwordless File copy and SSH, on page 163
C H A P T E R
Generating the SSH Server Key Pair , on page 156
Cisco MDS 9000 Series Security Configuration Guide, Release 8.x
8
155