Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
340
Views
5
Helpful
1
Replies

SSH version on IDSM

peterhkim
Level 1
Level 1

‎02-16-2009 12:05 PM - edited ‎03-10-2019 04:30 AM

Can I limit the SSH version to 2 on IDSM? I couldn't find any command for that. It looks like it allows both version 1 and 2. I need to limit it to version 2 only.

Thanks.

Labels:
0 Helpful
1 Reply 1

marcabal
Cisco Employee
Cisco Employee

‎02-16-2009 02:21 PM

Not currently supported.

SSHv2 has not been fully tested and supported for all aspects of the sensor. Some features still require SSHv1.

No mechanisms are in place to limit the sensor to SSHv2 only.

Attempting to limit the sensor to SShv2 will cause problems with the sensor.

There are enhancement requests that have already been made to fully support SSHv2 across all corresponding features of the sensor, and allow disabling of SSHv1.

I can not comment on if or when these requests may be fulfilled.

In the meantime the best protection for your sensor is to limit the access-list to only the specific IP Addresses that require access.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card