Administrator Guide

ManualsBrandsDell ManualsAccess PlatformsPowerSwitch S3048-ON

681

682

683

684

685

686

687

688

689

690

To view the status of DNS in the SSH server configuration, use the show running-config ip ssh command from EXEC mode.

DellEMC#show running-config ip ssh

ip ssh server dns enable

ip ssh hostbased-authentication enable

no ip ssh password-authentication enable

ip ssh server enable

Secure Shell Authentication

Secure Shell (SSH) is enabled by default using the SSH Password Authentication method.

Enabling SSH Authentication by Password

Authenticate an SSH client by prompting for a password when attempting to connect to the Dell EMC Networking system. This setup is

the simplest method of authentication and uses SSH version 2.

To enable SSH password authentication, use the following command.

• Enable SSH password authentication.

CONFIGURATION mode

ip ssh password-authentication enable

To view your SSH configuration, use the show ip ssh command from EXEC Privilege mode.

DellEMC(conf)#ip ssh server enable

DellEMC(conf)#ip ssh password-authentication enable

DellEMC# show ip ssh

SSH server : enabled.

SSH server version : v2.

SSH server vrf : default.

SSH server ciphers : 3des-cbc,aes128-cbc,aes192-cbc,aes256-cbc,aes128-ctr,aes192-

ctr,aes256-ctr.

SSH server macs : hmac-md5,hmac-md5-96,hmac-sha1,hmac-sha1-96,hmac-sha2-256,hmac-

sha2-256-96.

SSH server kex algorithms : diffie-hellman-group-exchange-sha1,diffie-hellman-group1-

sha1,diffie-hellman-group14-sha1.

Password Authentication : enabled.

Hostbased Authentication : disabled.

RSA Authentication : disabled.

Vty Encryption HMAC Remote IP

Using RSA Authentication of SSH

The following procedure authenticates an SSH client based on an RSA key using RSA authentication. This method uses SSH version 2.

1. On the SSH client (Unix machine), generate an RSA key, as shown in the following example.

2. Copy the public key id_rsa.pub to the Dell EMC Networking system.

3. Disable password authentication if enabled.

CONFIGURATION mode

no ip ssh password-authentication enable

4. Enable RSA authentication in SSH.

CONFIGURATION Mode

ip ssh rsa-authentication enable

5. Install user’s public key for RSA authentication in SSH.

EXEC Privilege Mode

ip ssh rsa-authentication username username my-authorized-keys flash://public_key

If you provide the username, the Dell EMC Networking OS installs the public key for that specific user. In case, no user is associated

with the current logged-in session, the system displays the following error message.

Security

689