Configuring The Ssh Server Cipher List; Secure Shell Authentication - Dell S4048–ON Configuration Manual

• hmac-sha2-256-96
When FIPS is enabled, the default HMAC algorithm is hmac-sha1-96.
Example of Configuring a HMAC Algorithm
The following example shows you how to configure a HMAC algorithm list.
Dell(conf)# ip ssh server mac hmac-sha1-96

Configuring the SSH Server Cipher List

To configure the cipher list supported by the SSH server, use the ip ssh server cipher cipher-list command in
CONFIGURATION mode.
cipher-list-: Enter a space-delimited list of ciphers the SSH server will support.
The following ciphers are available.
•
3des-cbc
•
aes128-cbc
•
aes192-cbc
•
aes256-cbc
•
aes128-ctr
•
aes192-ctr
•
aes256-ctr
The default cipher list is 3des-cbc,aes128-cbc,aes192-cbc,aes256-cbc,aes128-ctr,aes192-ctr,aes256-ctr
Example of Configuring a Cipher List
The following example shows you how to configure a cipher list.
Dell(conf)#ip ssh server cipher 3des-cbc aes128-cbc aes128-ctr

Secure Shell Authentication

Secure Shell (SSH) is enabled by default using the SSH Password Authentication method.
Enabling SSH Authentication by Password
Authenticate an SSH client by prompting for a password when attempting to connect to the Dell Networking system. This setup is
the simplest method of authentication and uses SSH version 1.
To enable SSH password authentication, use the following command.
• Enable SSH password authentication.
CONFIGURATION mode
ip ssh password-authentication enable
Example of Enabling SSH Password Authentication
To view your SSH configuration, use the show ip ssh command from EXEC Privilege mode.
Dell(conf)#ip ssh server enable
Dell(conf)#ip ssh password-authentication enable
Dell# show ip ssh
SSH server
SSH server version
SSH server vrf
SSH server ciphers
: enabled.
: v1 and v2.
: default.
: 3des-cbc,aes128-cbc,aes192-cbc,aes256-cbc,aes128-ctr,aes192-
755
Security