Concept Guide
Conguring DNS in the SSH Server
Dell EMC Networking provides support to enable the DNS in SSH server conguration for host-based authentication. You can specify
whether the SSH Server should look up the remote host name and check whether the resolved host name for the remote IP address maps
to the same IP address. By default, the DNS in the SSH server conguration is disabled.
To enable the DNS in the SSH server conguration, use the following command.
• Enable the DNS in the SSH server conguration.
CONFIGURATION mode
[no] ip ssh server dns enable
To disable the DNS in the SSH server conguration, use the no version of this command.
Example of DNS Conguration in SSH Server Connections
To view the status of DNS in the SSH server conguration, use the show running-config ip ssh command from EXEC mode.
DellEMC#show running-config ip ssh
!
ip ssh server dns enable
ip ssh hostbased-authentication enable
no ip ssh password-authentication enable
ip ssh server enable
Secure Shell Authentication
Secure Shell (SSH) is enabled by default using the SSH Password Authentication method.
Enabling SSH Authentication by Password
Authenticate an SSH client by prompting for a password when attempting to connect to the Dell EMC Networking system. This setup is
the simplest method of authentication and uses SSH version 2.
To enable SSH password authentication, use the following command.
• Enable SSH password authentication.
CONFIGURATION mode
ip ssh password-authentication enable
Example of Enabling SSH Password Authentication
To view your SSH conguration, use the show ip ssh command from EXEC Privilege mode.
DellEMC(conf)#ip ssh server enable
DellEMC(conf)#ip ssh password-authentication enable
DellEMC# show ip ssh
SSH server : enabled.
SSH server version : v2.
SSH server vrf : default.
SSH server ciphers : 3des-cbc,aes128-cbc,aes192-cbc,aes256-cbc,aes128-ctr,aes192-
ctr,aes256-ctr.
SSH server macs : hmac-md5,hmac-md5-96,hmac-sha1,hmac-sha1-96,hmac-sha2-256,hmac-
sha2-256-96.
SSH server kex algorithms : diffie-hellman-group-exchange-sha1,diffie-hellman-group1-
sha1,diffie-hellman-group14-sha1.
Password Authentication : enabled.
Hostbased Authentication : disabled.
Security
901