Cisco ASA SSH konfiguration: Unterschied zwischen den Versionen
Zur Navigation springen
Zur Suche springen
Thomas (Diskussion | Beiträge) |
Thomas (Diskussion | Beiträge) |
||
| (6 dazwischenliegende Versionen desselben Benutzers werden nicht angezeigt) | |||
| Zeile 26: | Zeile 26: | ||
*ciscoasa(config)# aaa authentication ssh console LOCAL | *ciscoasa(config)# aaa authentication ssh console LOCAL | ||
WARNING: local database is empty! Use 'username' command to define local users | WARNING: local database is empty! Use 'username' command to define local users | ||
| − | = | + | =ssh freischalten= |
| + | *ciscoasa(config)# ssh 0.0.0.0 0.0.0.0 if-outside | ||
| + | *ciscoasa(config)# ssh 0.0.0.0 0.0.0.0 if-inside | ||
| + | |||
| + | =User angelegen= | ||
*ciscoasa(config)# username admin password oimel privilege 15 | *ciscoasa(config)# username admin password oimel privilege 15 | ||
| + | |||
| + | =Copy and Paste= | ||
| + | <pre> | ||
| + | configure terminal | ||
| + | crypto key generate rsa general-keys modulus 2048 | ||
| + | yes | ||
| + | ssh timeout 10 | ||
| + | aaa authentication ssh console LOCAL | ||
| + | ssh 0.0.0.0 0.0.0.0 if-outside | ||
| + | ssh 0.0.0.0 0.0.0.0 if-inside | ||
| + | username admin password oimel privilege 15 | ||
| + | end | ||
| + | |||
| + | </pre> | ||
Aktuelle Version vom 17. Februar 2016, 09:57 Uhr
RSA Key erzeugen
- ciscoasa# configure terminal
- ciscoasa(config)# crypto key generate rsa general-keys modulus 2048
WARNING: You have a RSA keypair already defined named <Default-RSA-Key>. Do you really want to replace them? [yes/no]: yes Keypair generation process begin. Please wait...
RSA Key anzeigen
- ciscoasa(config)# show crypto key mypubkey rsa
Key pair was generated at: 15:28:19 UTC Feb 10 2016 Key name: <Default-RSA-Key> Usage: General Purpose Key Modulus Size (bits): 2048 Key Data: 30820122 300d0609 2a864886 f70d0101 01050003 82010f00 3082010a 02820101 00bd98de 8196dcd8 9cc28aaa c76c57e7 d67df6bc 12d3ca28 ee6f523c a8960a72 c0aaca26 a7c77b90 4aa9dec7 29038051 6d0e5f72 c6f4123c e6112b9a a1f2561a 7b213a91 b225ce7f 8915edcd 6fe841da fbc1dbc3 1780c356 0df2d3a6 fb8e072f ...
Timeout einstellen
- ciscoasa(config)# ssh timeout 10
AAA für SSH einrichten
- ciscoasa(config)# aaa authentication ssh console LOCAL
WARNING: local database is empty! Use 'username' command to define local users
ssh freischalten
- ciscoasa(config)# ssh 0.0.0.0 0.0.0.0 if-outside
- ciscoasa(config)# ssh 0.0.0.0 0.0.0.0 if-inside
User angelegen
- ciscoasa(config)# username admin password oimel privilege 15
Copy and Paste
configure terminal
crypto key generate rsa general-keys modulus 2048
yes
ssh timeout 10
aaa authentication ssh console LOCAL
ssh 0.0.0.0 0.0.0.0 if-outside
ssh 0.0.0.0 0.0.0.0 if-inside
username admin password oimel privilege 15
end