SSHd advanced configuration

View the configured global values and the internal system timers. The timers display a time stamp indicating, in seconds since last boot, when an event occurred.

Access mode

exec

Syntax

show switchServices sshd advanced

Output Description

Heading	Description	Filter
SSH Server Port	The port the system uses for SSH sessions. Valid values are from 1 to 65535.	sshdPort integer
Max Authentication Time	The maximum number of seconds allowed for the user authentication phase to complete. If the timer expires, the system cancels the request. A value of 0 disables the timeout timer. Valid values are from 0 to 180.	maximumAuthenticationTime integer
CLI Inherits SSH Login Credentials	Allows automatic CLI login if password authentication was used. Valid values: `enabled` : Attempt to use username/password for CLI login (if supplied). `disabled` : Do not attempt to automatically login to the CLI.	cliInheritsSshLoginCredentials enumeration
Error Handler	Sets the sshd applications to attempt handling system errors whenever possible. Valid values: `enabled`, `disabled`	handleErrors enumeration
Global Event Interval	The number of seconds allowed between similar SSH global events. This allows you to limit the frequency with which the system reports similar events to avoid flooding the network. Valid values are from 0 to 600.	globalEventInterval integer
Execution Monitor Mode	The system monitors its own internal processes. Valid values: `active` : Auto-detection of internal loops is enabled. `passive` : Auto-detection of internal loops is disabled.	executionMonitorMode enumeration
Patch Vendors	The name of any SSH vendors that should have known patches applied. If that vendor has known problem clients, the system automatically applies patches for known issues. Valid values: `none` : Disables the auto-patch feature. `sshcommunications` : Applies SSH Communication patches. `fsecure` : Applies FSecure patches. `sshCommFsecure` : Applies SSH Communication and FSecure patches. `vandyke` : Applies VanDyke patches. `sshcommVandyke` : Applies SSH Communication and VanDyke patches. `fsecureVandyke` : Applies FSecure and VanDyke patches. `sshcomFsecureVandyke` : Applies SSH Communication, FSecure, and VanDyke patches.	patchVendorIds enumeration
Keep Alive Interval	The number of seconds between 'keep alive' messages sent to the client. If the client does not respond after three keep alives, the system destroys the session. Keep alive messages are not universally supported across client applications. Because of this, the system instead sends a channel request to an invalid service. This function is just like a keep alive, as an error response indicates an active client. If the client application doesn't support error response properly, disable this feature by setting the clientKeepAliveInterval to 0. Valid values are from 0 to 3600.	clientKeepAliveInterval integer
SSH Server Public Key	The operational view of the public key that the server is using.	SvrPublicKey mlText

Heading

Description

Filter

SSH Server Port

The port the system uses for SSH sessions.

Valid values are from 1 to 65535.

sshdPort integer

Max Authentication Time

The maximum number of seconds allowed for the user authentication phase to complete. If the timer expires, the system cancels the request. A value of 0 disables the timeout timer.

Valid values are from 0 to 180.

maximumAuthenticationTime integer

CLI Inherits SSH Login Credentials

Allows automatic CLI login if password authentication was used.

Valid values:

enabled : Attempt to use username/password for CLI login (if supplied).
disabled : Do not attempt to automatically login to the CLI.

cliInheritsSshLoginCredentials enumeration

Error Handler

Sets the sshd applications to attempt handling system errors whenever possible.

Valid values: enabled, disabled

handleErrors enumeration

Global Event Interval

The number of seconds allowed between similar SSH global events. This allows you to limit the frequency with which the system reports similar events to avoid flooding the network.

Valid values are from 0 to 600.

globalEventInterval integer

Execution Monitor Mode

The system monitors its own internal processes.

Valid values:

active : Auto-detection of internal loops is enabled.
passive : Auto-detection of internal loops is disabled.

executionMonitorMode enumeration

Patch Vendors

The name of any SSH vendors that should have known patches applied. If that vendor has known problem clients, the system automatically applies patches for known issues.

Valid values:

none : Disables the auto-patch feature.
sshcommunications : Applies SSH Communication patches.
fsecure : Applies FSecure patches.
sshCommFsecure : Applies SSH Communication and FSecure patches.
vandyke : Applies VanDyke patches.
sshcommVandyke : Applies SSH Communication and VanDyke patches.
fsecureVandyke : Applies FSecure and VanDyke patches.
sshcomFsecureVandyke : Applies SSH Communication, FSecure, and VanDyke patches.

patchVendorIds enumeration

Keep Alive Interval

The number of seconds between 'keep alive' messages sent to the client. If the client does not respond after three keep alives, the system destroys the session.

Keep alive messages are not universally supported across client applications. Because of this, the system instead sends a channel request to an invalid service. This function is just like a keep alive, as an error response indicates an active client. If the client application doesn't support error response properly, disable this feature by setting the clientKeepAliveInterval to 0.

Valid values are from 0 to 3600.

clientKeepAliveInterval integer

SSH Server Public Key

The operational view of the public key that the server is using.

SvrPublicKey mlText

Related actions

You can do the following