Enabling SSH

Unanswered Question
Sep 17th, 2008

Are the following commands enough to configure ssh for allowing access from outside for full access to enable mode?

ssh outside

cryto key generate rsa modulus 1024

aaa authentication ssh console LOCAL

username (username) password (password) privilege 15

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Istvan_Rabai Wed, 09/17/2008 - 20:26

Hi Patrick,

For ssh access through the vty lines you could add the following:

conf t

aaa authentication login SSH_LOGIN local

aaa authorization exec SSH_ACCESS local

line vty 0 4

login authentication SSH_LOGIN

authorization exec SSH_ACCESS

transport input ssh



Farrukh Haroon Thu, 09/18/2008 - 00:28

Assuming this is a Cisco firewall you are talking about, these commands should suffice.

However the ANY ANY access on the outside is not really a good security practice. But it will work!




This Discussion