Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
Community Member

ASA 5510 ssh version

We have an ASA 5510 running 8.0(2). I'd like to set it running ssh version 2. To detect the current running version, I see there is a show running-config ssh version command in the document. But when this command is typed in, no any output. How to know which ssh version is running?

Thanks.

1 ACCEPTED SOLUTION

Accepted Solutions
Cisco Employee

Re: ASA 5510 ssh version

If the running config does not have a 'ssh version' command, the default is to allow both version 1 and 2.

You can verify this with 'show ssh'.

If you only want to allow version 2, configure 'ssh version 2'.

hth

Herbert

3 REPLIES
Cisco Employee

Re: ASA 5510 ssh version

If the running config does not have a 'ssh version' command, the default is to allow both version 1 and 2.

You can verify this with 'show ssh'.

If you only want to allow version 2, configure 'ssh version 2'.

hth

Herbert

Community Member

Re: ASA 5510 ssh version

Thanks Herbert. The show running-config ssh version does not work. But show ssh is fine.

Cisco Employee

Re: ASA 5510 ssh version

John,

thanks for the rating. Just to clarify:

"show running-config ssh version" means "show me all the commands in the running config, that start with 'ssh version' ".

So if this returns nothing, it doesn't mean that the command is not working, it simply means that you do not have any "ssh version ..." commands in your config. And in that case, i.e. if you do not explicitly configure either version, then the ASA will allow both version 1 and 2.

If you only want to allow version 2, then do

conf t

  ssh version 2

After that, "show run ssh version" will show "ssh version 2".

hth

Herbert

3804
Views
0
Helpful
3
Replies
CreatePlease to create content