Use the SSH/Telnet Configuration page to configure secure shell (SSH) and Telnet connections.
Enable and disable HMAC/Hashing Message Authentication Codes and ciphers as needed. Initial SSH settings for the HMAC codes and ciphers are listed in the following table. In general, weak HMAC codes and weak CBCciphers are disabled by default.
| Number | Type | Default setting |
|---|---|---|
| 1 | hmac-sha1-96 | Disabled |
| 2 | hmac-sha1 | Enabled |
| 3 | hmac-sha2-256 | Enabled |
| 4 | hmac-sha2-512 | Enabled |
| 5 | hmac-md5 | Disabled |
| 6 | aes128-ctr | Enabled |
| 7 | aes256-ctr | Enabled |
| 8 | 3des-ctr | Enabled |
| 9 | aes128-cbc | Disabled |
| 10 | aes256-cbc | Disabled |
| 11 | twofish256-cbc | Disabled |
| 12 | twofish-cbc | Disabled |
| 13 | twofish128-cbc | Disabled |
| 14 | 3des-cbc | Disabled |
| 15 | blowfish-cbc | Disabled |
By default, the SSH host key is configured as Normal.
Telnet is enabled by default. To diable Telnet, select Disabled in the Telnet Mode drop-down list.
Note
To disable Telnet from the CLI, issue the command no ip telnet.To save changes, select Save. To undo changes and revert to previously saved values, select Reset.