Home > CCNA Security, Cisco, IINS > Configuring SSH on your Cisco Router

Configuring SSH on your Cisco Router

Here are the basic steps to configure SSH on your Cisco Router including a few optional steps.

Router#conf t
Router(config)#hostname Rt1Lab
Rt1Lab(config)#ip domain-name lab.local
Rt1Lab(config)#crypto key generate rsa
The name for the keys will be: Rt1Lab.lab.local
Choose the size of the key modulus in the range of 360 to 2048 for your
General Purpose Keys. Choosing a key modulus greater than 512 may take
a few minutes.

How many bits in the modulus [512]: 1024
% Generating 1024 bit RSA keys, keys will be non-exportable…[OK]
Rt1Lab(config)#ip ssh authentication-retries 3 (optional, sets the number of bad login retries before disconnection)
Rt1Lab(config)#ip ssh time-out 60 (optional, sets the negotiation time in seconds which includes the time you have to enter the username and password at the login prompt before you get disconnected)
Rt1Lab(config)#username fred password cisco
Rt1Lab(config)#line vty 0 4
Rt1Lab(config-line)#transport input ssh
Rt1Lab(config-line)#login local
Rt1Lab(config-line)#exec-timeout 30 (optional, sets the idle time before disconnect from the VTY lines)

Categories: CCNA Security, Cisco, IINS Tags:
  1. No comments yet.
  1. No trackbacks yet.