C
OMMAND
Global Configuration
C
OMMAND
The SSH server supports up to four client sessions. The maximum
◆
number of client sessions includes both current Telnet sessions and
SSH sessions.
The SSH server uses DSA or RSA for key exchange when the client first
◆
establishes a connection with the switch, and then negotiates with the
client to select either DES (56-bit) or 3DES (168-bit) for data
encryption.
You must generate DSA and RSA host keys before enabling the SSH
◆
server.
E
XAMPLE
Console#ip ssh crypto host-key generate dsa
Console#configure
Console(config)#ip ssh server
Console(config)#
R
ELATED
ip ssh crypto host-key generate (1063)
show ssh (1066)
This command sets the SSH server key size. Use the no form to restore the
ip ssh
default setting.
server-key size
S
YNTAX
ip ssh server-key size key-size
no ip ssh server-key size
D
EFAULT
768 bits
C
OMMAND
Global Configuration
C
OMMAND
The server key is a private key that is never shared outside the switch.
The host key is shared with the SSH client, and is fixed at 1024 bits.
E
XAMPLE
Console(config)#ip ssh server-key size 512
Console(config)#
M
ODE
U
SAGE
C
OMMANDS
key-size – The size of server key. (Range: 512-896 bits)
S
ETTING
M
ODE
U
SAGE
– 1061 –
| Authentication Commands
C
28
HAPTER
Secure Shell