Filter
Top Products
Chapter 3: Operations 19
and the FTP connection will be closed. The CPS appliance then stores the SSH key with the
username in the CPS user database.
• When using the KEY keyword to specify the SSH key, the KEY parameter specifies the actual
uuencoded SSH key. This is for configurations that do not implement an FTP server. The CPS
appliance stores the specified key in the CPS user database.
The CPS appliance processes a uuencoded SSH2 public key file with the format described in the
IETF document draft-ietf-secshpublickeyfile-02. The key must follow all format requirements. The
UNIX ssh-keygen2 generates this file format. The CPS appliance also processes a uuencoded SSH1
public key file. The UNIX ssh-keygen generates this file format.
To enable SSH session access to the CPS network appliance:
1. Issue a Show Server Security command to ensure that you are using an authentication method
other than None.
SHOW SERVER SECURITY
2. Issue a Server SSH command with the Enable parameter. You may also specify an authentica-
tion method.
SERVER SSH ENABLE AUTH=<auth>
If an authentication method is not specified, the previous authentication parameter will be
used. The default value is AUTH=PW.
3. If you are enabling SSH for the first time, you are advised that all other CPS appliance sessions
will be terminated. Enter
Y to continue or N to cancel.
4. If you are reenabling SSH, you are prompted to use the existing SSH server key or generate a
new key. Enter
Y to use the existing key or N to generate a new key.
For more information, see Server SSH command on page 61.
To disable SSH session access to the CPS appliance:
Issue a Server SSH command with the Disable parameter.
SERVER SSH DISABLE
When SSH is disabled, the CPS appliance operates in plain text mode.
To display SSH information:
Issue a Show Server Security command.
SHOW SERVER SECURITY
If SSH is enabled, the display will include SSH2. Regardless of whether SSH is enabled, the
display will indicate the authentication method that was specified with the Server SSH command.
Enabling plain text Telnet and SSH connections
Plain text (non-encrypted) Telnet connections are enabled by default.