3com WX2200 3CRWX220095A User Manual
Managing the Management Services
113
Managing the
Management
Services
Management
Services
MSS provides the following services for managing a WX switch over the
network:
network:
Secure Shell (SSH) — SSH provides a secure connection to the CLI
through TCP port 22.
through TCP port 22.
Telnet — Telnet provides a nonsecure connection to the CLI through
TCP port 23.
TCP port 23.
HTTPS — HTTPS provides a secure connection to the Web
management application through TCP port 443.
management application through TCP port 443.
SSH is enabled by default. Telnet and HTTPS are disabled by default.
A WX switch can have up to eight Telnet or SSH sessions, in any
combination, and one Console session. A WXR100 can have up to four
Telnet or SSH sessions, in any combination, and one Console session.
combination, and one Console session. A WXR100 can have up to four
Telnet or SSH sessions, in any combination, and one Console session.
Managing SSH
MSS supports Secure Shell (SSH) Version 2. SSH provides secure
management access to the CLI over the network. SSH requires a valid
username and password for access to the switch. When a user enters a
valid username and password, SSH establishes a management session
and encrypts the session data.
management access to the CLI over the network. SSH requires a valid
username and password for access to the switch. When a user enters a
valid username and password, SSH establishes a management session
and encrypts the session data.
Login Timeouts
When you access the SSH server on a WX switch, MSS allows you 10
seconds to press Enter for the username prompt. After the username
prompt is displayed, MSS allows 30 seconds to enter a valid username
and password to complete the login. If you do not press Enter or
complete the login before the timer expires, MSS ends the session. These
timers are not configurable.
seconds to press Enter for the username prompt. After the username
prompt is displayed, MSS allows 30 seconds to enter a valid username
and password to complete the login. If you do not press Enter or
complete the login before the timer expires, MSS ends the session. These
timers are not configurable.
To ensure that all CLI management sessions are encrypted, after you
configure SSH, disable Telnet.
configure SSH, disable Telnet.
Enabling SSH
SSH is enabled by default. To disable or reenable it, use the following
command:
command:
set ip ssh server {enable | disable}