Users Guide

mode.

cipher-list-: Enter a space-delimited list of ciphers the SSH server will support.

The following ciphers are available.

• aes256-ctr

The default cipher list is aes256-ctr, aes256-cbc, aes192-ctr, aes192-cbc, aes128-ctr, aes128-cbc, 3des-cbc.

Example of Configuring a Cipher List

The following example shows you how to configure a cipher list.

Dell(conf)#ip ssh server cipher 3des-cbc aes128-cbc aes128-ctr

Secure Shell (SSH) is enabled by default using the SSH Password Authentication method.

Authenticate an SSH client by prompting for a password when attempting to connect to the Dell Networking system. This setup is the

simplest method of authentication and uses SSH version 1.

Dell(conf)#ip ssh password-authentication enable

Dell# show ip ssh

SSH server : enabled.

SSH server version : v1 and v2.

SSH server vrf : default.

SSH server ciphers : 3des-cbc,aes128-cbc,aes192-cbc,aes256-cbc,aes128-ctr,aes192-

ctr,aes256-ctr.

SSH server macs : hmac-md5,hmac-md5-96,hmac-sha1,hmac-sha1-96,hmac-sha2-256,hmac-

sha2-256-96.

SSH server kex algorithms : diffie-hellman-group-exchange-sha1,diffie-hellman-group1-

The following procedure authenticates an SSH client based on an RSA key using RSA authentication. This method uses SSH version 2.

1. On the SSH client (Unix machine), generate an RSA key, as shown in the following example.

2. Copy the public key id_rsa.pub to the Dell Networking system.

3. Disable password authentication if enabled.