Configure SSH Server Authentication Settings on a Switch through the CLI
PDF(619.5 KB) View with Adobe Reader on a variety of devices
ePub(669.6 KB) View in various apps on iPhone, iPad, Android, Sony Reader, or Windows Phone
Mobi (Kindle)(385.7 KB) View on Kindle device or Kindle app on multiple devices
Updated:December 13, 2018
Secure Shell (SSH) is a protocol that provides a secure remote connection to specific network devices. This connection provides functionality that is similar to a Telnet connection, except that it is encrypted. SSH allows the administrator to configure the switch through the command line interface (CLI) with a third party program.
The switch acts as an SSH client that provides SSH capabilities to the users within the network. The switch uses an SSH server to provide SSH services. When SSH server authentication is disabled, the switch takes any SSH server as trusted, which decreases security on your network. If SSH service is enabled on the switch, security is enhanced.
This article provides instructions on how to configure server authentication on a managed switch through the CLI.
1.4.7.06 - Sx300, Sx500
2.2.8.04 - Sx350, SG350X, Sx550X
Configure SSH Server Settings
Configure SSH Server Authentication Settings
Step 1. Log in to the switch console. The default username and password is cisco/cisco. If you have configured a new username or password, enter the credentials instead.
Note: To learn how to access an SMB switch CLI through SSH or Telnet, click here.
Note: The commands may vary depending on the exact model of your switch. In this example, the SG350X switch is accessed through Telnet.
Step 2. From the Privileged EXEC mode of the switch, enter the Global Configuration mode by entering the following:
Step 3. To enable remote SSH server authentication by the SSH client, enter the following:
SG350X(config)#ip ssh-client server authentication
Step 4. To specify the source interface which IPv4 address will be used as the Source IPv4 address for communication with IPv4 SSH servers, enter the following: