SSH Configuration on Cisco IOS XR Secure Shell (SSH) is a useful protocol or application for establishing secure sessions with the router. A router configured with SSH server allows a secure connection to the router similar to Telnet. The Telnet application has limited security. SSH provides stronger encryption and deploys public-key cryptography for added confidentiality. IOS XR supports two versions of SSH: •
SSH version 1 uses Rivest, Shamire, and Adelman (RSA) keys.
•
SSH version 2 uses the Digital Signature Algorithm (DSA).
There are two modes you can configure: SSH Server: The SSH server feature enables an SSH client to make a secure, encrypted connection to router. This connection provides functionality that is similar to that of an inbound Telnet connection.
SSH Client: The SSH client feature is an application running over the SSH protocol to provide device authentication and encryption. The SSH client enables router to make a secure, encrypted connection to another router or to any other device running the SSH server. This connection provides functionality that is similar to that of an outbound Telnet connection except that the connection is encrypted.