C H A P T E R
7
Configuring SSH and Telnet
This chapter describes how to configure Secure Shell Protocol (SSH) and Telnet on Cisco NX-OS devices.
This chapter includes the following sections:
•
About SSH and Telnet, on page 127
•
Licensing Requirements for SSH and Telnet, on page 129
•
Prerequisites for SSH and Telnet, on page 129
•
Guidelines and Limitations for SSH and Telnet, on page 129
•
Default Settings for SSH and Telnet, on page 130
•
•
Configuring Telnet, on page 147
•
Verifying the SSH and Telnet Configuration, on page 149
•
Configuration Example for SSH, on page 150
•
Configuration Example for SSH Passwordless File Copy, on page 151
•
Configuration Example for X.509v3 Certificate-Based SSH Authentication, on page 153
•
Additional References for SSH and Telnet, on page 153
About SSH and Telnet
This section includes information about SSH and Telnet.
SSH Server
You can use the SSH server to enable an SSH client to make a secure, encrypted connection to a Cisco NX-OS
device. SSH uses strong encryption for authentication. The SSH server in the Cisco NX-OS software can
interoperate with publicly and commercially available SSH clients.
The user authentication mechanisms supported for SSH are RADIUS, , LDAP, and the use of
locally stored usernames and passwords.
SSH Client
The SSH client feature is an application that runs over the SSH protocol to provide device authentication and
encryption. The SSH client enables a Cisco NX-OS device to make a secure, encrypted connection to another
Cisco NX-OS device or to any other device that runs the SSH server. This connection provides an outbound
Cisco Nexus 9000 Series NX-OS Security Configuration Guide, Release 9.x
127