03-21-2006 04:47 AM - edited 03-09-2019 02:20 PM
Due to recommendations from a security audit, the IOS network infrastructure must be managed through SSH v2, SSL or some other encrypted protocol. Currently for our routers, switches, firewalls, CSS, and APs we use TACACS+ and Telnet. What steps are necessary to move to SSH v2 and how do I maintain the same functionalities in ACS (i.e. line command logging, etc.)? Will I have additional hardware/software needs, if so any recommendations based on personal experiences?
Thanks
Gregg Garlington
03-21-2006 05:15 AM
Hi
As far as the IOS code is concerned you need to have crypto support built in with that to get you the rsa keys generated.
to have the crytp feature set you need to ios code which should also fit onto your exisiting DRAM and FLASH size or else you need to upgrade both DRAM as well as the flash to support the required ios code..
regds
03-21-2006 07:16 AM
Thanks, do you have anything more specfic? I know the IOS will have to support 3des for SSH v2 but what versions? How about ACS and logging?
Thanks
GG
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: