Jump to content

How to implement SSH on your Cisco IOS device


wildweaselmi
 Share

Recommended Posts

Here are the implementation steps for you to use.


DEVICE = MWGNMISOU01-FSR01


IP = 10.1.50.240


 


 


***********************************************************************************

*                                                                                 *

*                ********* IMPLEMENTATION STEPS SECTION ********                  *

*                                                                                 *

* Each implementation step MUST include validation commands to ensure the         *

* configuration changes are properly implemented.  Expected results MUST also     * 

* be explained.                                                                   *  

*                                                                                 *

* At the end of of each configuration change, you must save the config using      *

* the "copy run start" command.                                                   *

*                                                                                 *

***********************************************************************************

 

 

-----------------------------------------------------------------------------------

IMP STEP 1 - Adding ssh and telnet both commands

-----------------------------------------------------------------------------------

 

MWGNMISOU01-FSR01     BEGIN (10.1.50.240)

 

Conf t

!

ip domain-name MWGNMISOU01-FSR01.na.mywiseguys.com

ip ssh version 2

crypto key generate rsa

!

ip ssh source-interface Loopback0

!

line vty 0 4

  transport input ssh telnet

!

line vty 5 7

 transport input ssh telnet

!

line vty 8 15

 transport input ssh telnet

!

line aux 0

 transport input ssh telnet

 

End

 

NOTE: 

 

while executing the command "crypto key generate rsa"

 

(1)it will ask for modulus length value, please use 1024

 

(2)if it asks for rsa keypair-name, please use  the command

    

   ip ssh rsa keypair-name MWGNMISOU01-FSR01.MWGNMISOU01-FSR01.na.mywiseguys.com

 

 

****************************************Validation Steps***************************************************

 

ssh MWGNMISOU01-FSR01

 

! please use user ID and pasword to login. 

 

telnet MWGNMISOU01-FSR01

! Please login using user ID and password to login. Should be able to authenticate

 

****************************************End of Validation Steps*********************************************

 

 

(D) Remove telnet access

 

MWGNMISOU01-FSR01     BEGIN (10.1.50.240)

 

Conf t

line vty 0 4

transport input ssh

!

line vty 5 7

transport input ssh

!

line vty 8 15

 transport input ssh

!

line aux 0

 transport input ssh 

End

 

*************************************** Validation Steps********************************************

 

telnet MWGNMISOU01-FSR01

! The Telnet connection should be refused.

 

ssh MWGNMISOU01-FSR01

 

! please use user ID and pasword to login. If NOT authenticated then proceed to backout steps

 

If able to authenicate and login, please save the configuration

 

 

 

*************************************** End of Validation Steps*******************************************

 


Link to comment
Share on other sites

  • 1 month later...
 Share

×
×
  • Create New...