PrepAway - Latest Free Exam Questions & Answers

Which two of these elements need to be configured prior to enabling SSH?

Which two of these elements need to be configured prior to enabling SSH? (Choose two.)

PrepAway - Latest Free Exam Questions & Answers

A.
hostname

B.
loopback address

C.
default gateway

D.
domain name

E.
SSH peer address

Explanation:
To enable Secure Shell (SSHv2) version 2 (disable version 1) on a Cisco router an IOS with 3des
encryption is required. When there is no SSH version configured, version 1 and 2 will be
supported both.
Follow the next steps to enable SSH:
1. Configure the hostname command.
2. Configure the DNS domain.
3. Generate RSA key to be used.
4. Enable SSH transport support for the virtual type terminal (vty)
Example SSH version 2 configuration:
hostname ssh-router
aaa new-model

username cisco password cisco
ip domain-name routers.local
!
Specifies which RSA keypair to use for SSH usage.
ip ssh rsa keypair-name sshkeys
!
Enables the SSH server for local and remote authentication on the router.
!
For SSH Version 2, the modulus size must be at least 768 bits. crypto key generate rsa usagekeys label
sshkeys modulus 768 !
Configures SSH control variables on your router.
ip ssh timeout 120
!
configure SSH version 2 (will disable SSH version 1)
ip ssh version 2
!
disable Telnet and enable SSH
line vty 0 4
transport input SSH
Commands to verify SSH configuration:
show ssh
show ip ssh
debug ip ssh


Leave a Reply