How to configure SSH on Cisco routers and switches

Tweet

Here is how to configure SSH on Cisco Routers and Switches

** Make sure you are using k9(crypto) image in order to support SSH connection

router# conf t
router(config)# aaa new-model
router(config)# username cisco password 0 ipbalance
router(config)# hostname Cisco_SSH
Cisco_SSH(config)# ip domain-name Cisco-lab.ipblance.com
Cisco_SSH(config)# crypto key generate rsa
Cisco_SSH(config)# ip ssh time-out 60
Cisco_SSH(config)# ip ssh authenticate-retries 5
Cisco_SSH(config)# ip ssh version 2 ; Option to use version 2
Cisco_SSH(config)#
Cisco_SSH(config)# access-list 50 permit 10.10.10.0 0.0.0.0.255 ; To limit access
Cisco_SSH(config)#
Cisco_SSH(config)# line vty 0 4
Cisco_SSH(config)# transport input ssh ; To allow SSH only
Cisco_SSH(config)# access-class 50 in
Cisco_SSH(config)#
 

View & Debugging commands

show ip ssh
show ssh
debug ip ssh