Configuring ssh – Allied Telesis AT-S63 User Manual

Chapter 33: Secure Shell (SSH)

756

Section VII: Management Security

Configuring SSH

This section describes how to configure the switch as an SSH server. For
a description of all the steps required to configure an SSH server, see
“General Steps for Configuring SSH” on page 755.

Before you begin this procedure, you need to configure a host and server
keys for SSH. See Chapter 31, “Encryption Keys” on page 693. The
minimum bit size of the server key is 512 bits. The recommended bit size
for a server key is 768 bits. The recommended size for the host key is
1024 bits. In addition, the bit size of the host and server keys must differ
by 128 bits.

While you are configuring the SSH feature, you must disable the SSH
server. When you have completed your configuration changes, enable the
SSH server to permit SSH client connections.

Note

Allied Telesyn recommends disabling the Telnet server before you
enable SSH. Otherwise, the security functions provided by SSH are
lost. See “Enabling or Disabling the Telnet Server” on page 64.

To configure the SSH protocol, perform the following procedure:

1. From the Main Menu, type 7 to select Security and Services.

The Security and Services menu is shown in Figure 82 on page 259.

2. From the Security and Services menu, type 8 to select Secure Shell

(SSH).

The Secure Shell (SSH) menu is shown in Figure 267.

Figure 267. Secure Shell (SSH) Menu

Allied Telesyn Ethernet Switch AT-94xx - AT-S63

Marketing

User: Manager

11:20:02 02-Mar-2005

Secure Shell (SSH)

1 - SSH Server Status ....... Disabled
2 - Host Key ID.............. <Not Defined>
3 - Server Key ID ........... <Not Defined>
4 - Server Key Expiry Time .. 0 hours
5 - Login Timeout ........... 180 seconds
6 - Show Server Information
R - Return to Previous Menu

Enter your selection?