ssh
Configures the SSH server settings used
to authenticate SSH connection to a EX3500 switchManagement access
to an EX3500 switch can be enabled/disabled as required using
separate interfaces and protocols (HTTP, SSH). Disabling unused and insecure interfaces and
unused management services can dramatically reduce an attack footprint and free resources
within an EX3500 management policy.
Supported in the following platforms:
- Service Platforms — NX 95XX, NX 96XX, NX 7510
Syntax
ssh [authentication-retries <1-5>|server|server-key size <512-1024>|timeout <1-120>]
Parameters
ssh [authentication-retries <1-5>|server|server-key size <512-1024>|timeout <1-120>]
| ssh |
Enables SSH management access to an EX3500 switch.
This option is disabled by default. Use this command to configure SSH access
settings. |
| authentication-retries <1-5> |
Configures the maximum number of retries made to connect
to the SSH server resource
- <1-5> – Specify a value from 1 - 5. The default setting is 3.
|
| server |
Enables SSH server connection |
| server-key size <512-1024> |
Configures the SSH server key size
- <512-1024> – Specify the SSH server key from 512 - 1,024. The default
length is 768.
|
| timeout <1-120> |
Configures the SSH server resource inactivity timeout
value in seconds. When the specified time is exceeded, the SSH server resource
becomes unreachable and must be re-authenticated.
- <1-120> – Specify a value from 1 120 seconds. The default is 120
seconds.
|
Examples
nx9500-6C8809(config-ex3500-management-policy-test)#ssh authentication-retries 4
nx9500-6C8809(config-ex3500-management-policy-test)#ssh timeout 90
nx9500-6C8809(config-ex3500-management-policy-test)#ssh server-key size 600
nx9500-6C8809(config-ex3500-management-policy-test)#ssh server
nx9500-6C8809(config-ex3500-management-policy-test)#show context
ex3500-management-policy test
ssh server
ssh authentication-retries 4
ssh timeout 90
ssh server-key size 600
http secure-server
enable password level 3 7 12345678901020304050607080929291
snmp-server enable traps authentication
--More--
nx9500-6C8809(config-ex3500-management-policy-test)#
