Solved: Re: ASA 5510 ssh version

trimodaljohn · ‎03-03-2010

We have an ASA 5510 running 8.0(2). I'd like to set it running ssh version 2. To detect the current running version, I see there is a show running-config ssh version command in the document. But when this command is typed in, no any output. How to know which ssh version is running?

Thanks.

Herbert Baerten · ‎03-03-2010

If the running config does not have a 'ssh version' command, the default is to allow both version 1 and 2.

You can verify this with 'show ssh'.

If you only want to allow version 2, configure 'ssh version 2'.

hth

Herbert

View solution in original post

Herbert Baerten · ‎03-03-2010

If the running config does not have a 'ssh version' command, the default is to allow both version 1 and 2.

You can verify this with 'show ssh'.

If you only want to allow version 2, configure 'ssh version 2'.

hth

Herbert

trimodaljohn · ‎03-03-2010

Thanks Herbert. The show running-config ssh version does not work. But show ssh is fine.

Herbert Baerten · ‎03-03-2010

John,

thanks for the rating. Just to clarify:

"show running-config ssh version" means "show me all the commands in the running config, that start with 'ssh version' ".

So if this returns nothing, it doesn't mean that the command is not working, it simply means that you do not have any "ssh version ..." commands in your config. And in that case, i.e. if you do not explicitly configure either version, then the ASA will allow both version 1 and 2.

If you only want to allow version 2, then do

conf t

ssh version 2

After that, "show run ssh version" will show "ssh version 2".

hth

Herbert

ryguy · ‎08-23-2018

Don't forget wr mem :)