| Security Measures
C
13
HAPTER
Configuring the Secure Shell
C
ONFIGURING THE
SSH S
ERVER
The SSH server supports up to four client sessions. The maximum
N
:
OTE
number of client sessions includes both current Telnet sessions and SSH
sessions.
The SSH server can be accessed using any configured IPv4 or IPv6
N
:
OTE
interface address on the switch.
Use the Security > SSH (Configure Global) page to enable the SSH server
and configure basic settings for authentication.
A host key pair must be configured on the switch before you can
N
:
OTE
enable the SSH server. See
CLI R
EFERENCES
"Secure Shell" on page 684
◆
P
ARAMETERS
These parameters are displayed in the web interface:
SSH Server Status – Allows you to enable/disable the SSH server on
◆
the switch. (Default: Disabled)
Version – The Secure Shell version number. Version 2.0 is displayed,
◆
but the switch supports management access via either SSH Version 1.5
or 2.0 clients.
Authentication Timeout – Specifies the time interval in seconds that
◆
the SSH server waits for a response from a client during an
authentication attempt. (Range: 1-120 seconds; Default: 120 seconds)
Authentication Retries – Specifies the number of authentication
◆
attempts that a client is allowed before authentication fails and the
client has to restart the authentication process. (Range: 1-5 times;
Default: 3)
Server-Key Size – Specifies the SSH server key size.
◆
(Range: 512-896 bits; Default:768)
The server key is a private key that is never shared outside the
■
switch.
The host key is shared with the SSH client, and is fixed at 1024 bits.
■
– 278 –
"Generating the Host Key Pair" on page
279.