Enabling Ssh With Rsa Public Key For Cli - AudioCodes Mediant 800 User Manual

CHAPTER 7 CLI-Based Management

Enabling SSH with RSA Public Key for CLI

Unless configured for TLS, Telnet is not secure as it requires passwords to be transmitted in clear
text. To overcome this, you can use Secure SHell (SSH) which is the de-facto standard for secure
CLI. SSH 2.0 is a protocol built above TCP providing methods for key exchange, authentication,
encryption, and authorization. SSH requires appropriate client software for the management PC.
Most Linux distributions have OpenSSH pre-installed; Windows-based PCs require an SSH client
software such as PuTTY. By default, SSH uses the same username and password as the device's
Telnet and Web server. SSH supports 1024/2048-bit RSA public keys, providing carrier-grade
security.
Follow the instructions below to configure the device with an administrator RSA key as a means of
strong authentication.
➢
To enable SSH and configure RSA public keys for Windows (using PuTTY SSH soft-
ware):
1. Start the PuTTY Key Generator program, and then do the following:
a. Under the Parameters group, do the following:
◆
◆
b. Under the Actions group, click Generate and then follow the on-screen instructions.
c. Under the Actions group, click Save private key to save the new private key to a file
(*.ppk) on your PC.
d. Under the Key group, select and copy the displayed encoded text (public key) between
"ssh-rsa" and "rsa-key-....", as shown in the example below:
2. Open the Local Users table (see
required user, paste the public key that you copied in Step 1.d into the 'SSH Public Key' field,
as shown below:
Select the SSH-2 RSA option.
In the 'Number of bits in a generated key' field, enter "1024" bits.
Configuring Management User
Mediant 800 Gateway & E-SBC | User's Manual
- 57 -
Accounts), and then for the