Configuring a C-series Platform to Accept SSH Connections
You can enable SSH to let users who have the appropriate privileges connect to a C-series platform. For security reasons, we recommend that you do not allow remote users to access the CLI as
root
.Use the following configuration statements to enable SSH access from the
[edit]
hierarchy level:system services ssh {root-login (allow | deny | deny-password);protocol-version (v1 | v2);}To configure the C-series platform to accept SSH connections:
- From configuration mode, access the
[edit system services ssh]
hierarchy level.- (Optional) Specify that SSH version 1 be used.
[edit system services ssh]
user@host>set protocol-version v1
SSH version 2 is enabled by default.
- (Optional) Specify whether or not to allow root login through SSH:
[edit system services ssh]
user@host>set root-login
(allow | deny | deny-password)
allow
—Allow users to log in to the C-series platform asroot
through SSH.deny
—Disable users from logging in to the C-series platform asroot
through SSH.deny-password
—Allow users to log in to the C-series platform asroot
through SSH when the authentication method (for example, RSA authentication) does not require a password. (Default)