Difference between revisions of "Enabling SSH and disabling telnet to Cisco switch"
From Notes_Wiki
(Created page with "=Enabling SSH and disabling telnet to Cisco switch= First one should upgrade to latest crypto IOS available. Crypto IOS files generally have letter 'k' in their names. Then w...") |
m |
||
Line 1: | Line 1: | ||
<yambe:breadcrumb self="Enabling SSH and disabling telnet to Cisco switch">Switch configuration notes|Switch configuration notes</yambe:breadcrumb> | |||
=Enabling SSH and disabling telnet to Cisco switch= | =Enabling SSH and disabling telnet to Cisco switch= | ||
Line 21: | Line 22: | ||
''Note: This would also cause http to be disabled. Hence connecting to switch using browser or Cisco Network Assistant would not be possible.'' | ''Note: This would also cause http to be disabled. Hence connecting to switch using browser or Cisco Network Assistant would not be possible.'' | ||
<yambe:breadcrumb self="Enabling SSH and disabling telnet to Cisco switch">Switch configuration notes|Switch configuration notes</yambe:breadcrumb> |
Revision as of 06:03, 18 September 2018
<yambe:breadcrumb self="Enabling SSH and disabling telnet to Cisco switch">Switch configuration notes|Switch configuration notes</yambe:breadcrumb>
Enabling SSH and disabling telnet to Cisco switch
First one should upgrade to latest crypto IOS available. Crypto IOS files generally have letter 'k' in their names. Then we can enable ssh and disable telnet using:
conf t ip domain-name iiit.ac.in username iiit password m1d0ubqbp($@$ level 15 crypto key generate rsa modulus 2048 line vty 0 15 login local transport protocol ssh OR transport input ssh end wr
- To keep both telnet and ssh enabled we can use 'transport protocol ssh telnet' or 'transport input telnet ssh' based on switch model.
- Domain name is set since switch will try to generate key for '<switch_name>.<domain_name>'
One must verify that things are working properly before terminating current session to switch.
Note: This would also cause http to be disabled. Hence connecting to switch using browser or Cisco Network Assistant would not be possible.
<yambe:breadcrumb self="Enabling SSH and disabling telnet to Cisco switch">Switch configuration notes|Switch configuration notes</yambe:breadcrumb>