Use LEFT and RIGHT arrow keys to navigate between flashcards;
Use UP and DOWN arrow keys to flip the card;
H to show hint;
A reads text to speech;
4 Cards in this Set
- Front
- Back
VTY
|
Telnet or SSH
|
|
Steps for SSH access
|
Step 1. Configure the vty lines to use usernames, with either locally configured usernames (using the login local command) or a AAA server.
Step 2. If using locally defined usernames, add one or more username global configuration commands to configure username/password pairs. Step 3. Configure the switch to generate a matched public and private key pair to usefor encryption, using two commands: A. As a prerequisite for the next command, configure a DNS domain name with the ip domain-name name global configuration command. B. Create the encryption keys using the crypto key generate rsa globalconfiguration command. Step 4. (Optional) Enable SSH Version 2 using the ip ssh version 2 global commandfor enhanced security |
|
Telnet/SSH support commands
|
transport input all or transport input telnet ssh: Support both
transport input none: Support neither transport input telnet: Support only Telnet transport input ssh: Support only SSH |
|
Switches can protect enable mode by requiring that the user supply an enable password after using the enable EXEC command. However, the configuration can be based on two different commands: the older enable password password global command and the newer (and preferred) enable secret password global command. IOS allows you to configure neither, one or the other, or even both of these commands.Then the switch chooses what password to require of a user based on the following rules:
|
Both commands configured: Use the enable secret password command
Only one command configured: Use the password in that one command Neither command configured (default): Console users are allowed into enable mode without a password prompt, while others are rejected. |