Description
Configure a Secure Shell (SSH) Server to enable remote management access to the system.
Properties
- Index
- The index of the object, starting at 1. (Identifier)
- Name
- Specifies a symbolic name for the SSH server. (Identifier)
- Port
- The listening port for the SSH server. (Default: 22)
- AllowHostKeyDSA
- Allow DSA public key algorithm. (Default: No)
- AllowHostKeyRSA
- Allow RSA public key algorithm. (Default: Yes)
- AllowHostKeyECDSA
- Allow ECDSA public key algorithm. (Default: Yes)
- AllowKexDH14
- Allow Diffie-Hellman Group 14 key exchange algorithm. (Default: Yes)
- AllowKexDH1
- Allow Diffie-Hellman Group 1 key exchange algorithm. (Default: No)
- AllowAES128CBC
- Allow AES-128-CBC encryption algorithm. (Default: No)
- AllowAES128CTR
- Allow AES-128-CTR encryption algorithm. (Default: Yes)
- AllowAES128GCM
- Allow AES-128-GCM encryption algorithm. (Default: Yes)
- AllowAES192CBC
- Allow AES-192-CBC encryption algorithm. (Default: No)
- AllowAES192CTR
- Allow AES-192-CTR encryption algorithm. (Default: Yes)
- AllowAES256CBC
- Allow AES-256-CBC encryption algorithm. (Default: No)
- AllowAES256CTR
- Allow AES-256-CTR encryption algorithm. (Default: Yes)
- AllowAES256GCM
- Allow AES-256-GCM encryption algorithm. (Default: Yes)
- AllowCHACHA20
- Allow Chacha20-Poly1305 encryption algorithm. (Default: Yes)
- AllowBlowfish
- Allow Blowfish encryption algorithm. (Default: No)
- Allow3DES
- Allow 3DES encryption algorithm. (Default: No)
- AllowMACSHA1
- Allow SHA1 integrity algorithm. (Default: Yes)
- AllowMACMD5
- Allow MD5 integrity algorithm. (Default: No)
- AllowMACSHA196
- Allow SHA1-96 integrity algorithm. (Default: No)
- AllowMACMD596
- Allow MD5-96 integrity algorithm. (Default: No)
- AllowMACSHA2256
- Allow SHA2-256 integrity algorithm. (Default: Yes)
- AllowMACSHA2512
- Allow SHA2-512 integrity algorithm. (Default: Yes)
- Banner
- Specifies the greeting message to display when the user logs in. (Default: "Welcome,\r\n\r\n - Type \"help\" to see a list
of available commands.\r\n - To get help on a specific command, type \"help command\".\r\n - A summary of the options for
a command is displayed with \"command -?\".\r\n\r\nUse the tab key to get a list of valid choices for the current command
or option.\r\nConsult the CLI reference guide for more information.\r\n")
- MaxSessions
- The maximum number of clients that can be connected at the same time. (Default: 5)
- SessionIdleTime
- The number of seconds a user can be idle before the session is closed. (Default: 1800)
- LoginGraceTime
- When the user has supplied the username, the password has to be provided within this number of seconds or the session will
be closed. (Default: 30)
- AuthenticationRetries
- The number of retries allowed before the session is closed. (Default: 3)
- AccessLevel
- The access level to grant the user or system that logs in. (Default: Admin)
- AuthMethod
- Allowed client authentication methods. (Default: Any)
- AuthProfile
- Specifies the authentication profile to use when authenticating SSH access.
- LogEnabled
- Enable logging. (Default: Yes)
- SourceNetwork
- Specifies the source network for which remote access is granted.
- DestinationNetwork
- Specifies the destination network for which remote access is granted. (Default: all-nets)
- SourceInterface
- Specifies the source interface for which remote access is granted.
- DestinationInterface
- Specifies the destination interface for which remote access is granted. (Default: core)
- Comments
- Text describing the current object. (Optional)
cOS Stream 4.00.05 CLI Reference Guide
