PrepAway - Latest Free Exam Questions & Answers

Which two of these elements need to be configured prior to enabling SSH?

Which two of these elements need to be configured prior to enabling SSH? (Choose two.)

PrepAway - Latest Free Exam Questions & Answers

A.
hostname

B.
loopback address

C.
default gateway

D.
domain name

E.
SSH peer address

Explanation:
To enable Secure Shell (SSHv2) version 2 (disable version 1) on a Cisco router an IOS with 3des encryption is required.

When there is no SSH version configured, version 1 and 2 will be supported both.

Follow the next steps to enable SSH:
Configure the hostname command.
Configure the DNS domain.
Generate RSA key to be used.
Enable SSH transport support for the virtual type terminal (vty)

Example SSH version 2 configuration:

hostname ssh-router
aaa new-model
username cisco password cisco
ip domain-name routers.local

! Specifies which RSA keypair to use for SSH usage.
ip ssh rsa keypair-name sshkeys

! Enables the SSH server for local and remote authentication on the router.
! For SSH Version 2, the modulus size must be at least 768 bits.
crypto key generate rsa usage-keys label sshkeys modulus 768

! Configures SSH control variables on your router.
ip ssh timeout 120

! configure SSH version 2 (will disable SSH version 1)
ip ssh version 2

!— disable Telnet and enable SSH
line vty 0 4
transport input SSH

Commands to verify SSH configuration:
show ssh
show ip ssh
debug ip ssh


Leave a Reply