How to Configure Secure Shell
Command or Action
Step 4
ip ssh {timeout seconds |
authentication-retries number}
Example:
Switch(config)# ip ssh timeout 90
authentication-retries 2
Step 5
Use one or both of the following:
• line
vtyline_number[ ending_line_number ]
• transport input ssh
Example:
Switch(config)# line vty 1 10
or
Switch(config-line)# transport input
ssh
Step 6
end
Example:
Switch(config-line)# end
Step 7
show running-config
Example:
Switch# show running-config
Step 8
copy running-config startup-config
Example:
Switch# copy running-config
Consolidated Platform Configuration Guide, Cisco IOS Release 15.2(4)E (Catalyst 2960-X Switches)
1076
Purpose
example, if the SSH client supports SSHv1 and SSHv2, the SSH server
selects SSHv2.
Configures the SSH control parameters:
• Specify the time-out value in seconds; the default is 120 seconds.
The range is 0 to 120 seconds. This parameter applies to the SSH
negotiation phase. After the connection is established, the Switch
uses the default time-out values of the CLI-based sessions.
By default, up to five simultaneous, encrypted SSH connections for
multiple CLI-based sessions over the network are available (session
0 to session 4). After the execution shell starts, the CLI-based session
time-out value returns to the default of 10 minutes.
• Specify the number of times that a client can re-authenticate to the
server. The default is 3; the range is 0 to 5.
Repeat this step when configuring both parameters.
(Optional) Configures the virtual terminal line settings.
• Enters line configuration mode to configure the virtual terminal line
settings. For line_number and ending_line_number, specify a pair
of lines. The range is 0 to 15.
• Specifies that the Switch prevent non-SSH Telnet connections. This
limits the router to only SSH connections.
Returns to privileged EXEC mode.
Verifies your entries.
(Optional) Saves your entries in the configuration file.