Ssh Parameters - AudioCodes Mediant 800B User Manual
Gateway & e-sbc
Hide thumbs
Also See for Mediant 800B:
- User manual (1338 pages) ,
- Installation and maintenance manual (104 pages) ,
- Hardware installation manual (56 pages)
Table of Contents
Advertisement
User's Manual
Parameter
TLS Client Verify Server
Certificate
configure network/security-
settings/tls-vrfy-srvr-cert
[VerifyServerCertificate]
TLS Remote Subject Name
configure network/security-
settings/tls-rmt-subs-name
[TLSRemoteSubjectName]
TLS Expiry Check Start
expiry-check-start
[TLSExpiryCheckStart]
TLS Expiry Check Period
expiry-check-period
[TLSExpiryCheckPeriod]
TLS FIPS 140 Mode
[TLS_Fips140_Mode]
67.5.5 SSH Parameters
Secure Shell (SSH) parameters are described in the table below.
Parameter
Enable SSH Server
configure system > cli-settings
> ssh
[SSHServerEnable]
Server Port
configure system > cli-settings
> ssh-port
Version 7.2
For FQDN, the certificate may use wildcards (*) to replace
parts of the domain name.
Determines whether the device, when acting as a client for TLS
connections, verifies the Server certificate. The certificate is
verified with the Root CA information.
[0] Disable (default)
[1] Enable
Note: If Subject Name verification is necessary, the parameter
PeerHostNameVerificationMode must be used as well.
Defines the Subject Name that is compared with the name
defined in the remote side certificate when establishing TLS
connections.
If the SubjectAltName of the received certificate is not equal to
any of the defined Proxies Host names/IP addresses and is not
marked as 'critical', the Common Name (CN) of the Subject field is
compared with this value. If not equal, the TLS connection is not
established. If the CN uses a domain name, the certificate can
also use wildcards ('*') to replace parts of the domain name.
The valid range is a string of up to 49 characters.
Note: The parameter is applicable only if the parameter
PeerHostNameVerificationMode is set to 1 or 2.
Defines the number of days before the installed TLS server
certificate is to expire at which the device must send a trap
(acCertificateExpiryNotification) to notify of this.
The valid value is 0 to 3650. The default is 60.
Defines the periodical interval (in days) for checking the TLS
server certificate expiry date.
The valid value is 1 to 3650. The default is 7.
Enables FIPS 140-2 conformance mode for TLS.
[0] Disable (default)
[1] Enable
Table 67-28: SSH Parameters
Enables the device's embedded SSH server.
[0] Disable (default)
[1] Enable
Defines the port number for the embedded SSH server.
Range is any valid port number. The default port is 22.
1017
67. Configuration Parameters Reference
Description
Description
Mediant 800B Gateway & E-SBC
Advertisement
Table of Contents
