Figure 3-58, Ssh server settings – LevelOne FGL-2870 User Manual

Configuring the Switch

3-98

3

• SSH Authentication Retries – Specifies the number of authentication attempts

that a client is allowed before authentication fails and the client has to restart the
authentication process. (Range: 1-5 times; Default: 3)

• SSH Server-Key Size – Specifies the SSH server key size.

(Range: 512-896 bits; Default:768)
- The server key is a private key that is never shared outside the switch.
- The host key is shared with the SSH client, and is fixed at 1024 bits.

Web – Click Security, SSH, Settings. Enable SSH and adjust the authentication
parameters as required, then click Apply. Note that you must first generate the host
key pair on the SSH Host-Key Settings page before you can enable the SSH server.

Figure 3-58 SSH Server Settings

CLI – This example enables SSH, sets the authentication parameters, and displays
the current configuration. It shows that the administrator has made a connection via
SHH, and then disables this connection.

Console(config)#ip ssh server

4-138

Console(config)#ip ssh timeout 100

4-139

Console(config)#ip ssh authentication-retries 5

4-139

Console(config)#ip ssh server-key size 512

4-140

Console(config)#end
Console#show ip ssh

4-142

SSH Enabled - version 2.0
Negotiation timeout: 120 secs; Authentication retries: 5
Server key size: 512 bits
Console#show ssh

4-143

Connection Version State Username Encryption
0 2.0 Session-Started admin ctos aes128-cbc-hmac-md5
stoc aes128-cbc-hmac-md5
Console#disconnect 0

4-55

Console#