04-02-2008 08:53 AM - edited 03-05-2019 10:08 PM
I need to harden some cisco 2950 switches by adding SSH to them. The IOS on them currently is 12.1 (11)
Anyone know whether this will support SSH or what the next IOS upgrade should be for us to obtain SSH funtionility (as opposed to telnet)
04-02-2008 09:02 AM
It looks as if 12.1(12c)is the first IOS to support it but only if you have an enhanced image (EI)
You may need to upgrade and make sure you have a cryptographic feature set.
http://www.cisco.com/en/US/products/hw/switches/ps628/prod_bulletin09186a0080117169.html
Here is a link on enhanced images vs standard image (SI)
http://www.cisco.com/en/US/products/hw/switches/ps628/prod_bulletin09186a00800b3089.html
From the below guide
"The cryptographic EI provides support for the Secure Shell Protocol (SSP)"
Read the preface of the below guide.
04-02-2008 09:05 AM
Peter:
you could use the featrure navigator by clicking on the link below:
http://tools.cisco.com/ITDIT/CFN/jsp/index.jsp
Or you can cut to the chase and just try configuring SSH to see if the switch allows it.
Sample SSH config:
To enable SSH, besides the commands below, the device hostname and ip domain name must be configured.
Router(config)# ip ssh
(enable SSH)
Router(config)# crypto key generate rsa
(generate SSH key pair to support remote SSH access)
HTH
Victor
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide