/cfg/sys/access/sshd
SSH Server Menu
 
[SSH Server Menu]
     intrval - Set interval for generating the RSA server key
     hkeygen - Generate the RSA host key
     skeygen - Generate the RSA server key
     sshport - Set SSH server port number
     sshkey - SSH Public Key Menu
     nologin - Enable/disable SSH no login display
     sshv1 - Enable ssh v1 support
     weakalg  - Enable/disable SSH weak algorithms
     scpadm - Set SCP-only admin password
     ena - Enable SCP apply and save
     dis - Disable SCP apply and save
     on - Turn SSH server ON (SSHv1/SSHv2)
     off - Turn SSH server OFF
     cur - Display current SSH server configuration
 
SSH Server Menu Options (/cfg/sys/access/sshd) 
Command Syntax and Usage
intrval <0 - 24>
 
Sets the interval for auto-generating the RSA server key.
0 indicates that RSA server key auto-generation is disabled.
Note: This command is available only when connected through the serial console port.
hkeygen
 
Generates the RSA host key.
To support the SSH server feature, two sets of RSA keys (host and server keys) are required. The host key is 1024 bits and is used to identify Alteon.
This process may take several minutes to complete.
This command takes effect immediately without the need of an Apply command.
Note: This command is available only when connected through the serial console port.
skeygen
 
Generates the RSA server key.
The server key is 768 bits and is used to make it impossible to decipher a captured session by breaking into Alteon at a later time.
This process may take several minutes to complete.
This command takes effect immediately without the need of an Apply command.
Note: This command is available only when connected through the serial console port.
intrval <0 - 24>
 
Sets the interval for auto-generating the RSA server key.
0 indicates that RSA server key auto-generation is disabled. When greater than 0, Alteon auto-generates the RSA server key every specified interval. However, RSA server key generation is skipped if Alteon is busy with other key or cipher generation when the timer expires.
Note: This command is available only when connected through the serial console port.
hkeygen
 
Generates the RSA host key.
To support the SSH server feature, two sets of RSA keys (host and server keys) are required. The host key is 1024 bits and is used to identify Alteon. The server key is 768 bits and is used to make it impossible to decipher a captured session by breaking into Alteon at a later time.
When you first enable and apply the SSH server, Alteon generates the RSA host and server keys and stores them in the flash memory. When Alteon reboots, it retrieves the host and server keys from the flash memory. If these two keys are not available in the flash memory and if the SSH server feature is enabled, Alteon generates them during the system reboot.
This process may take several minutes to complete.
Note: This command take effect immediately without the need of an apply command.
skeygen
 
Generates the RSA server key.
To support the SSH server feature, two sets of RSA keys (host and server keys) are required. The host key is 1024 bits and is used to identify Alteon. The server key is 768 bits and is used to make it impossible to decipher a captured session by breaking into Alteon at a later time.
When you first enable and apply the SSH server, Alteon generates the RSA host and server keys and stores them in the flash memory. When Alteon reboots, it retrieves the host and server keys from the flash memory. If these two keys are not available in the flash memory and if the SSH server feature is enabled, Alteon generates them during the system reboot.
This process may take several minutes to complete.
Note: This command take effect immediately without the need of an apply command.
sshport <TCP_port_number>
 
Sets the server port number.
sshkey
 
Displays the SSH Public key menu. To view this menu, see /cfg/sys/access/sshd/sshkey SSH Public Key Menu.
nologin enable | disable
 
Enables or disables SSH no login display.
nologin enable | disable
 
Enables or disables SSH no login display.
Note: This command is available only when connected through the serial console port.
sshv1 enable | disable
 
Enables or disables SSH version 1 support.
Default: disable
Note: SSHv1 is a non-secure protocols. Radware recommends using SSHv2 instead.
weakalg enable | disable
 
Enables/disables allowing weak algorithms for SSH connectivity to Alteon management.
Default: enable
scpadm
 
Sets the SCP-only admin password.
Note: This command is available only when connected through the serial console port.
ena
 
Enables the SCP putcfg_apply and putcfg_apply_save.
dis
 
Disables the SCP putcfg_apply and putcfg_apply_save.
Note: This command is available only when connected through the serial console port.
dis
 
Disables the SCP apply and save.
on
 
Sets the SSH server to on.
off
 
Sets the SSH server to off.
Note: SSH access can only be disabled using a serial console and not using Telnet. For vADC, SSH access can be disabled via Telnet.
off
 
Sets the SSH server to off.
cur
 
Displays the current SSH server configuration.