Security settings, Ssh server host keys – Lantronix XPort AR User Manual
Page 81
XPort AR User Guide
81
10: Security Settings
The XPort AR supports Secure Shell (SSH) and Secure Sockets Layer (SSL). SSH is a network
protocol for securely accessing a remote device. SSH provides a secure, encrypted
communication channel between two hosts over a network. It provides authentication and
message integrity services.
Secure Sockets Layer (SSL) is a protocol that manages data transmissiong security over the
Internet. It uses digital certificates for authentication and cryptography against eavesdropping and
tampering. It provides encryption and message integrity services. SSL is widely used for secure
communication to a web server. SSL uses certificates and private keys.
Note:
The XPort AR supports SSLv3 and its successors, TLS1.0 and TLS1.1. An incoming
SSlv2 connection attempt is answered with an SSlv3 response. If the initiator also supports
SSLv3, SSLv3 handles the rest of the connection.
This chapter contains the following sections:
SSL Certificates and Private Keys
SSH Server Host Keys
The SSH Server Host Keys web page opens when you click SSH from the Main Menu. It has four
sub-menus for viewing and changing SSH server host keys, SSH server authorized keys, SSH
client known hosts, and SSH client users.
Note:
SSH keys may be created on another computer and uploaded to the XPort AR. For
example, use the ssh-keygen -b 1024 -t dsa command to create a 1024-bit DSA key pair. SSH
Keys from other programs may be converted to the required XPort AR format. Use Open SSH to
perform the conversion.
To create or upload SSH server host keys, perform the following steps.