Configures the SSH server settings used to authenticate SSH connection to a EX3500 switch

Management access to an EX3500 switch can be enabled/disabled as required using separate interfaces and protocols (HTTP, SSH). Disabling unused and insecure interfaces and unused management services can dramatically reduce an attack footprint and free resources within an EX3500 management policy.

Supported in the following platforms:

  • Service Platforms — NX 95XX, NX 96XX, NX 7510


ssh [authentication-retries <1-5>|server|server-key size <512-1024>|timeout <1-120>]


ssh [authentication-retries <1-5>|server|server-key size <512-1024>|timeout <1-120>]
ssh Enables SSH management access to an EX3500 switch. This option is disabled by default. Use this command to configure SSH access settings.
authentication-retries <1-5> Configures the maximum number of retries made to connect to the SSH server resource
  • <1-5> – Specify a value from 1 - 5. The default setting is 3.
server Enables SSH server connection
server-key size <512-1024> Configures the SSH server key size
  • <512-1024> – Specify the SSH server key from 512 - 1,024. The default length is 768.
timeout <1-120> Configures the SSH server resource inactivity timeout value in seconds. When the specified time is exceeded, the SSH server resource becomes unreachable and must be re-authenticated.
  • <1-120> – Specify a value from 1 120 seconds. The default is 120 seconds.


nx9500-6C8809(config-ex3500-management-policy-test)#ssh authentication-retries 4
nx9500-6C8809(config-ex3500-management-policy-test)#ssh timeout 90
nx9500-6C8809(config-ex3500-management-policy-test)#ssh server-key size 600
nx9500-6C8809(config-ex3500-management-policy-test)#ssh server
nx9500-6C8809(config-ex3500-management-policy-test)#show context
ex3500-management-policy test
 ssh server
 ssh authentication-retries 4
 ssh timeout 90
 ssh server-key size 600
 http secure-server
 enable password level 3 7 12345678901020304050607080929291
 snmp-server enable traps authentication

Related Commands

no (ex3500-management-policy-config-mode) Disables SSH management access to an EX3500 switch