View detailed session negotiation information.
exec
show switchServices sshd sessions advanced negotiation
| Heading | Description | Filter |
|---|---|---|
| Client IP | The IP address of the SSH client (the user's application that is talking to the server). | clientIp ipAddress |
| Client Port | The number of the TCP port the client is using to connect to the server. | clientPort integer |
| User Service | The type of service the user requested, for example SSH connection or SSH user authentication. | userService text |
| Auth Method | The authentication method SSH used to verify the user. Valid values: publicKey: requires cryptographic keys password: requires login password none: requires no user authentication. If both systems agree on no authentication, you may have seriously compromised security. In addition, the system does not allow file transfers with no authentication. |
userAuthenticationMethod text |
| Attempted Auth Method | The last authentication method attempted by the client. Valid values: publicKey, password, or none. |
attemptedUserAuthenticationMethod text |
| Negotiation Details | The client-to-server and server-to-client negotiation and authentication settings. Note that the key algorithms lists DSS and RSA for the client, while the server only supports DSS. This is reflected in the 'common' listing. The output uses the following abbreviations: clt-enc, svr-enc, com-enc: client, server, or common encryption clt-mac, svr-mac, com-mac: client, server, or common HMAC algorithms clt-cmp, svr-cmp, com-cmp: client, server, or common compression clt-kex, svr-kex, com-kex: client, server, or common key exchange clt-keyAlg, svr-keyAlg, com-keyAlg: client, server, or common key algorithm The authentication method is dictated by the server, and is listed, therefore, only under server-to-client. |
kexNegotiationDetails text |
| Client Version | The SSH client's version string, if patches are used. | clientVersionString text |