Enable SSH in Switch and Router

Assuming the IP address, enable password and default route are in place, the additional steps needed are as follows:

1. Configure a domain name
cisco(config)# ip domain-name cisco.com

2. Configure the RSA key generation for encryption
cisco(config)# crypto key generate rsa
* it may prompt user for the key length generated in the range of 360 to 2048. Default is 512-bit.

3. Configure authentication method
a) Using local database
cisco(config)# username cisco password cisco


b) Using Radius server
cisco(config)# aaa new-model
cisco(config)# aaa authentication login Radius_Server group radius
cisco(config)# radius-server host

4. Configure the terminal line
cisco(config)# line vty 0 4
cisco(config-line)# login local                                            // using local database


cisco(config-line)# login authentication Radius_Server          //using radius server
cisco(config-line)# transport input ssh

Share your views...

1 Respones to "Enable SSH in Switch and Router"

Booge2 said...

If you want to avoid being prompted (eg: if you're cut and pasting a config in)  when creating the the key you can specify the modulus used in the same line - an example fo the commend would look like the following (key length of 1024 in this case):
"crypto key generate rsa modulus 1024"

I do a lot of pasting of short scripts into devices and this helps to avoid the prompt

November 23, 2012 at 4:23 AM

Post a Comment



Our Partners

DISCLAIMER: This site does not store any files on its server. I only index and link to content provided by other sites. All the files are from internet. In case of any query/objection regarding copyright or privacy, please inform me at Contact me and leave your comment here. I will immediately respond to you.