In this section:



Modified: for 12.1.3


Overview

For additional information, refer to Managing SSH Cryptographic Algorithms.

Use the CLI sshdConfig system command to add the algorithms to the sshd_config file. The CLI syntax and parameter descriptions are provided below.

Command Syntax

% set system admin <SYSTEM NAME> sshdConfig <ciphers | macs | kexalgorithms> <ALGORITHMS list>

Command Parameters

ParameterLength/RangeDescription

sshdConfig

N/A

<Algorithm list> – Use this feature to include specific Ciphers, MACS and KEX Algorithms in the sshd_config file. 

Algorithm Types

ciphers

Up to 10,240 characters

Comma-separated list of Ciphers to include in the sshd_config file.

macs

Up to 10,240 characters

Comma-separated list of MACS to include in the sshd_config file.

kexalgorithms

Up to 10.240 characters

Comma-separated list of KEX Algorithms to include in the ssshd_config file.

Configuration Examples

In the example below, two Ciphers, MACS and KEX Algorithms are added to the SBC Core sshd_config file.

set system admin VSBC01 sshdConfig ciphers aes256-ctr,aes128-ctr,aes192-ctr
commit
set system admin VSBC01 sshdConfig macs hmac-sha2-512-etm@openssh.com,hmac-sha2-512
commit
set system admin VSBC01 sshdConfig kexalgorithms diffie-hellman-group-exchange-sha256,diffie-hellman-group16-sha512
commit