5-32
Cisco SCE 2000 and SCE 1000 Software Configuration Guide
OL-7827-12
Chapter 5 Configuring the Management Interface and Security
Configuring the Available Interfaces
How to Run Only SSHv2
Step 1
From the SCE(config)# prompt, type
ip ssh
and press
Enter
.
Step 2
From the SCE(config)# prompt, type
no ip ssh sshv1
and press
Enter
To re-enable SSHv1, use the command
ip ssh SSHv1.
How to Assign an ACL to the SSH Server
Step 1
From the SCE(config)# prompt, type
ip ssh access-class
acl-number
and press
Enter
.
Assigns the specified ACL to the SSH server, so that access the SSH server is limited to the IP addresses
defined in the ACL.
How to Remove the ACL Assignment from the SSH Server
Step 1
From the SCE(config)# prompt, type
no ip ssh access-class
and press
Enter
.
Removes the ACL assignment from the SSH server, so that any IP address may now access the SSH
server.
How to Delete the Existing SSH Keys
Step 1
From the SCE(config)# prompt, type
ip ssh key remove
and press
Enter
.
Removes the existing SSH key set from non-volatile memory.
If the SSH server is currently enabled, it will continue to run, since it only reads the keys from
non-volatile memory when it is started. However, if the startup-configuration specifies that the SSH
server is enabled, the SCE platform will not be able to start the SSH server on startup if the keys have
been deleted. To avoid this situation, after executing this command, always do one of the following
before the SCE platform is restarted (using
reload
):
•
Generate a new set of keys.
•
Disable the SSH server and save the configuration.
How to Monitor the Status of the SSH Server
Use this command to monitor the status of the SSH sever, including current SSH sessions.
Step 1
From the SCE> prompt, type
show ip ssh
and press
Enter
.
This is a User Exec command. Make sure that you are in User Exec command mode by exiting any other
modes.