Cisco Nexus 5000 Series Switch CLI Software Configuration Guide, NX-OS 4.0(1a)N1 (OL-16597-01, January 2009)
Send feedback to nx5000-docfeedback@cisco.com
19-3
Cisco Nexus 5000 Series Switch CLI Software Configuration Guide
OL-16597-01
Chapter 19 Configuring SSH and Telnet
Guidelines and Limitations
Guidelines and Limitations
SSH has the following configuration guidelines and limitations:
• The Nexus 5000 Series switch supports only SSH version 2 (SSHv2).
Configuring SSH
This section includes the following sections:
• Generating SSH Server Keys, page 19-3
• Specifying the SSH Public Keys for User Accounts, page 19-4
• Starting SSH Sessions to Remote Devices, page 19-6
• Clearing SSH Hosts, page 19-6
• Disabling the SSH Server, page 19-6
• Deleting SSH Server Keys, page 19-6
• Clearing SSH Sessions, page 19-7
Generating SSH Server Keys
You can generate an SSH server key based on your security requirements. The default SSH server key is
an RSA key generated using 1024 bits. To generate SSH server keys, perform this task:
The following example shows how to generate an SSH server key:
switch# configure terminal
switch(config)# ssh key rsa 2048
switch(config)# exit
switch# show ssh key
switch# copy running-config startup-config
Command Purpose
Step 1
switch# configure terminal
Enters configuration mode.
Step 2
switch(config)# ssh key {dsa [force] | rsa
[bits [force]]}
Generates the SSH server key.
The bits argument is the number of bits used to
generate the key. The range is 768 to 2048 and the
default value is 1024.
Use the force keyword to replace an existing key.
Step 3
switch(config)# exit
Exits global configuration mode.
Step 4
switch# show ssh key
(Optional) Displays the SSH server keys.
Step 5
switch# copy running-config startup-config
(Optional) Copies the running configuration to the
startup configuration.