Filter
Top Products
Chapter 4 Configuring Switch Software 4-21
4.10.3.3 SNMP Defaults
SNMP is enabled by default. The default read-only community string is public.
The default read-write community string is private.
4.10.4 Secure Remote Access
4.10.4.1 SSH and SSL/TLS Keys
The switch supports SSH for a secure CLI console as well as SSL/TLS for secure
HTTP. By default, SSH and SSL are disabled. The switch cannot generate its own
keys. Keys must be generated on an external PC, and uploaded to the switch via
TFTP. Once the keys are on the switch, SSH and HTTPS must be enabled to be used.
4.10.4.2 Enabling SSH and SSL
First, the certifications and keys must be uploaded to the switch using a command
such as the following:
Upload the following files to the switch:.
Enable secure access (SSH/Telnet) and disable non-secure access (SSL/HTTP).
copy tftp://<ip>/<file> <location>
File Location
rsa1.key nvram:sshkey-rsa1
rsa2.key nvram:sshkey-rsa2
dsa.key nvram:sshkey-dsa
dh512.pem nvram:sslpem-dhweak
dh1024.pem nvram:sslpem-dhstrong
server.pem nvram:sslpem-server
rootcert.pem nvram:sslpem-root
ip ssh
configure