Concept Guide

ManualsBrandsDell ManualsAccess PlatformsPowerSwitch S4048-ON

901

902

903

904

905

906

907

908

909

910

Conguring DNS in the SSH Server

Dell EMC Networking provides support to enable the DNS in SSH server conguration for host-based authentication. You can specify

whether the SSH Server should look up the remote host name and check whether the resolved host name for the remote IP address maps

to the same IP address. By default, the DNS in the SSH server conguration is disabled.

To enable the DNS in the SSH server conguration, use the following command.

• Enable the DNS in the SSH server conguration.

CONFIGURATION mode

[no] ip ssh server dns enable

To disable the DNS in the SSH server conguration, use the no version of this command.

Example of DNS Conguration in SSH Server Connections

To view the status of DNS in the SSH server conguration, use the show running-config ip ssh command from EXEC mode.

DellEMC#show running-config ip ssh

ip ssh server dns enable

ip ssh hostbased-authentication enable

no ip ssh password-authentication enable

ip ssh server enable

Secure Shell Authentication

Secure Shell (SSH) is enabled by default using the SSH Password Authentication method.

Enabling SSH Authentication by Password

Authenticate an SSH client by prompting for a password when attempting to connect to the Dell EMC Networking system. This setup is

the simplest method of authentication and uses SSH version 2.

To enable SSH password authentication, use the following command.

• Enable SSH password authentication.

CONFIGURATION mode

ip ssh password-authentication enable

Example of Enabling SSH Password Authentication

To view your SSH conguration, use the show ip ssh command from EXEC Privilege mode.

DellEMC(conf)#ip ssh server enable

DellEMC(conf)#ip ssh password-authentication enable

DellEMC# show ip ssh

SSH server : enabled.

SSH server version : v2.

SSH server vrf : default.

SSH server ciphers : 3des-cbc,aes128-cbc,aes192-cbc,aes256-cbc,aes128-ctr,aes192-

ctr,aes256-ctr.

SSH server macs : hmac-md5,hmac-md5-96,hmac-sha1,hmac-sha1-96,hmac-sha2-256,hmac-

sha2-256-96.

SSH server kex algorithms : diffie-hellman-group-exchange-sha1,diffie-hellman-group1-

sha1,diffie-hellman-group14-sha1.

Password Authentication : enabled.

Hostbased Authentication : disabled.

Security

901