Users Guide
Version Description
8.3.19.0 Introduced on the S4820T.
8.3.11.1 Introduced on the Z9000.
8.3.7.0 Introduced on the S4810.
7.6.1.0 Introduced on the S-Series.
7.5.1.0 Introduced on the C-Series.
pre-6.1.1.0 Introduced on the E-Series.
Usage Information
This command species the le used for the host-based authentication. The creates/ le overwrites the
flash://ADMIN_DIR/ssh/knownhosts le and deletes the user-specied le. Even though this command is
a global conguration command, it does not appear in the running conguration because you only need to run this
command once.
The le contains the OpenSSH-compatible public keys of the host for which host-based authentication is allowed.
An example known host le format:
poclab4,123.12.1.123 ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAIEAox/
QQp8xYhzOxn07yh4VGPAoUfgKoieTHO9G4sNV+ui+DWEc3cgYAcU5Lai1MU2ODrzhCwyDNp05tKBU3t
ReG1o8AxLi6+S4hyEMqHzkzBFNVqHzpQc
+Rs4p2urzV0F4pRKnaXdHf3Lk4D460HZRhhVrxqeNxPDpEn WIMPJi0ds= ashwani@poclab4
NOTE: For rhostfile and pub-key-file, the administrator must FTP the le to the
chassis.
Example
Dell# conf
Dell(conf)# ip ssh pub-key-file flash://knownhosts
Dell(conf)#
Related Commands
• show ip ssh client-pub-keys — displays the client-public keys used for the host-based authentication.
ip ssh rekey
Congures the time rekey-interval or volume rekey-limit threshold at which to re-generate the SSH key during an SSH session.
Syntax
ip ssh rekey [time rekey-interval] [volume rekey-limit]
To reset to the default, use no ip ssh rekey [time rekey-interval] [volume rekey-limit]
command.
Parameters
time minutes
Enter the keywords time then the amount of time in minutes. The range is from 10 to
1440 minutes. The default is 60 minutes
volume rekey-
limit
Enter the keywords volume then the amount of volume in megabytes. The range is from 1
to 4096 to megabytes. The default is 1024 megabytes
Defaults The default time is 60 minutes. The default volume is 1024 megabytes.
Command Modes CONFIGURATION mode
Security 1355