ContentsPrint

Configuring the Secure Shell protocol using EDM

Use the following procedure to configure the Secure Shell (SSH) protocol for replacing Telnet and providing secure access to ACLI interface.

Procedure steps

  1. From the navigation tree, double-click Security.

  2. In the Security tree, double-click SSH.

  3. In the SSH tab, configure the parameters as required.

  4. In the toolbar, click Apply.

Variable definitions

Use the data in the following table to configure SSH.

Variable Value
Enable
Enables, disables, or selects secure mode for SSH authentication. Values include:

  • false: Disables SSH.

  • true: Enables SSH.

  • secure: Selects secure mode.
Version Displays the SSH version.
Port Displays the SSH connection port. Value ranges between 1 and 65535.

DEFAULT: 22
Timeout Displays the SSH connection timeout in seconds. Value ranges between 1 and 120.

DEFAULT: 60
Retries Displays the number of SSH authentication retries configured on the switch. Value ranges between 1–100.

DEFAULT: 3
KeyAction
Specifies the SSH key action. Available options are:

  • generateDsa

  • generateRsa

  • deleteDsa

  • deleteRsa
RsaAuth Enables or disables SSH RSA authentication.
DsaAuth Enables or disables SSH DSA authentication.
PassAuth Enables or disables SSH password authentication.
RsaHostKeyStatus
Indicates the current status of the SSH RSA host key. Values include:

  • notGenerated

  • generated

  • generating
DsaHostKeyStatus
Indicates the current status of the SSH DSA host key. Values include:

  • notGenerated

  • generated

  • generating
TftpServerInetAddressType
Indicates the type of address stored in the TFTP server. Values include:

  • ipv4

  • ipv6
TftpServerInetAddress Specifies the IP address stored in the TFTP server for all TFTP operations.
TftpFile Indicates the name of file for the TFTP transfer.
TftpAction
Specifies the action for the TFTP transfer. Values include:

  • downloadSshDsaPublicKeys

  • deleteSshDsaAuthKey

  • downloadSshRsaPublicKeys

  • deleteSshRsaAuthKey
TftpResult Displays the result of the last TFTP action request.
SshAuthKeyFilename Specifies the SSH authentication key file to download.
UsbTargetUnit Specifies the unit number of the USB port to use for file uploads and downloads. Values range from 1 to 10. DEFAULT: 0

  • 1 to 8: Sepecifies a USB port in a switch stack.

  • 9: Specifies a standalone switch.

  • 0: Specifies to use a TFTP server instead of a USB port.

  • 10: Specifies to use an SFTP server instead of a USB port.
Action When DnldSshAuthKeyFromUsb is selected, the SSH authentication key is downloaded using the USB port.
Status
Indicates the status of the latest SSH authentication key download using the USB port. Values include the following:

  • other: no action taken since the switch startup

  • inProgress: authentication key download is in progress

  • success: authentication key download completed successfully

  • fail: authentication key download failed
Comments on this document?
October 2015
© 2012-2015, Avaya, Inc. All Rights Reserved.