8 – Connection Security Configuration
Managing SSL and SSH Services
8-2
59263-02 A
S
Managing SSL and SSH Services
Consider the following when enabling SSH and SSL services:
To establish a secure Telnet connection, your workstation must use an SSH
client.
To enable secure SSL connections, you must first synchronize the date and
time on the switch and workstation. Refer to
“Setting the Date and Time” on
page 5-19
.
The SSL service must be enabled to authenticate users through a RADIUS
server. Refer to
“Configuring a RADIUS Server on the Switch” on page 10-3
.
To disable SSL when using a user authentication RADIUS server, the
RADIUS server authentication order must be local.
Enabling SSL automatically creates a security certificate on the switch.
Enter the
Set Setup Services
command to manage both SSH and SSL services
as shown in the following example:
SANbox #> admin start
SANbox (admin) #> set setup services
A list of attributes with formatting and current values will follow.
Enter a new value or simply press the ENTER key to accept the current value.
If you wish to terminate this process before reaching the end of the list
press 'q' or 'Q' and the ENTER key to do so.
PLEASE NOTE:
-----------
* Further configuration may be required after enabling a service.
* If services are disabled, the connection to the switch may be lost.
* When enabling SSL, please verify that the date/time settings
on this switch and the workstation from where the SSL connection
will be started match, and then a new certificate may need to be
created to ensure a secure connection to this switch.
TelnetEnabled (True / False) [True ]
SSHEnabled (True / False) [False] True
GUIMgmtEnabled (True / False) [True ]
SSLEnabled (True / False) [False] True
EmbeddedGUIEnabled (True / False) [True ]
SNMPEnabled (True / False) [True ]
NTPEnabled (True / False) [False]
CIMEnabled (True / False) [False]
FTPEnabled (True / False) [True ]
MgmtServerEnabled (True / False) [True ]
Do you want to save and activate this services setup? (y/n): [n] y
Summary of Contents for SANbox 5800V Series
Page 28: ...2 Command Line Interface Usage Downloading and Uploading Files 2 10 59263 02 A S Notes...
Page 52: ...4 Network Configuration Managing IP Security 4 20 59263 02 A S Notes...
Page 86: ...5 Switch Configuration Managing Idle Session Timers 5 34 59263 02 A S Notes...
Page 104: ...6 Port Configuration Displaying Extended Credit Status 6 18 59263 02 A S Notes...
Page 154: ...11 Event Log Configuration Creating and Downloading a Log File 11 8 59263 02 A S Notes...
Page 172: ...12 Call Home Configuration Resetting the Call Home Database 12 18 59263 02 A S Notes...
Page 406: ...14 Command Reference Command Listing 14 226 59263 02 A S...
Page 421: ......