Ssh Settings - D-Link DGS-3000 Series Reference Manual

hosts. SSH, with its array of unmatched security features is an essential tool in today's networking environment. It is a
powerful guardian against numerous existing security hazards that now threaten network communications.
The steps required to use the SSH protocol for secure communication between a remote PC (the SSH client) and the
Switch (the SSH server) are as follows:
•
Create a user account with admin-level access using the User Accounts window. This is identical to creating
any other admin-level User Account on the Switch, including specifying a password. This password is used to
logon to the Switch, once a secure communication path has been established using the SSH protocol.
•
Configure the User Account to use a specified authorization method to identify users that are allowed to
establish SSH connections with the Switch using the SSH User Authentication List window. There are three
choices as to the method SSH will use to authorize the user, which are Host Based, Password, and Public
Key.
•
Configure the encryption algorithm that SSH will use to encrypt and decrypt messages sent between the SSH
client and the SSH server, using the SSH Authentication Method and Algorithm Settings window.
•
Finally, enable SSH on the Switch using the SSH Settings window.
After completing the preceding steps, a SSH Client on a remote PC can be configured to manage the Switch using a
secure, in band connection.

SSH Settings

Users can configure and view settings for the SSH server.
To view this window, click Security > SSH > SSH Settings as shown below:
The fields that can be configured are described below:
Parameter
SSH Server State
Max. Session (1-8)
Connection Timeout
(120-600)
Authfail Attempts (2-
20)
Rekey Timeout
TCP Port Number (1-
65535)
Click the Apply button to accept the changes made for each individual section.
DGS-3000 Series Gigabit Ethernet Switch Web UI Reference Guide
Figure 8-73 SSH Settings window
Description
Use the radio buttons to enable or disable SSH on the Switch. The default is Disabled.
Enter a value between 1 and 8 to set the number of users that may simultaneously
access the Switch. The default setting is 8.
Allows the user to set the connection timeout. The user may set a time between 120
and 600 seconds. The default setting is 120 seconds.
Allows the Administrator to set the maximum number of attempts that a user may try to
log on to the SSH Server utilizing the SSH authentication. After the maximum number of
attempts has been exceeded, the Switch will be disconnected and the user must
reconnect to the Switch to attempt another login. The number of maximum attempts
may be set between 2 and 20. The default setting is 2.
This field is used to set the time period that the Switch will change the security shell
encryptions by using the drop-down menu. The available options are Never, 10 min, 30
min, and 60 min. The default setting is Never.
Enter the TCP Port Number used for SSH. The default value is 22.
267