To provide secure access to your Cisco device, you can use SSH instead of Telnet. SSH uses encryption to protect data from eavesdropping.
To enable SSH, the following steps are required:
1. Set up a host name and domain name.
2. Configure the local user name and password.
3. Generate public and private RSA keys.
4. Allow only SSH access.
The following example shows the configuration of the first three steps:
First, we defined the unit's host name with the hostname R1 command. Then we have defined the domain name with the command ip domain name cisco. Then, the local user is created with the command ccna in the User name password command. Then we only need to activate SSH access to a device. To do this, use the transport input ssh command:
When you use the command sse transport transport, Telnet access to the device automatically shuts down.
NOTE
You should use the newer version of the protocol, SSH version 2. To do so, use the global configuration command ip ssh version 2.
To enable SSH, the following steps are required:
1. Set up a host name and domain name.
2. Configure the local user name and password.
3. Generate public and private RSA keys.
4. Allow only SSH access.
The following example shows the configuration of the first three steps:
First, we defined the unit's host name with the hostname R1 command. Then we have defined the domain name with the command ip domain name cisco. Then, the local user is created with the command ccna in the User name password command. Then we only need to activate SSH access to a device. To do this, use the transport input ssh command:
When you use the command sse transport transport, Telnet access to the device automatically shuts down.
NOTE
You should use the newer version of the protocol, SSH version 2. To do so, use the global configuration command ip ssh version 2.