Lantronix 900-560 manual Security in Detail, Secure Shell SSH, SSH Server Configuration

16. Security in Detail

The XPort Pro supports Secure Shell (SSH) and Secure Sockets Layer (SSL).

Secure Shell: SSH

SSH is a network protocol for securely accessing a remote device. This protocol provides a secure, encrypted communication channel between two hosts over a network.

Two instances require configuration: when the XPort Pro is the SSH server and when it is an SSH client. The SSH server is used by the CLI (Command Mode) and for tunneling in Accept Mode. The SSH client is for tunneling in Connect Mode.

SSH Server Configuration

To configure the XPort Pro as an SSH server, there are two requirements:

￿Defined host keys: both private and public keys are required. These keys are used for the Diffie-Hellman key exchange (used for the underlying encryption protocol).

￿Defined users: these users are permitted to connect to the XPort Pro SSH server.

To configure SSH server settings:

1.Click SSH ￿ SSH Server: Host Keys at the top of the page. The SSH Server: Host Keys page appears.

2.If the keys exist, locate the Private Key and Public Key files using the Browse button. Select the Key Type (RSA is more secure) and click Submit to upload the keys.

Note: SSH keys may be created on another computer and uploaded to the XPort Pro. For example, use the following command using Open SSH to create a 1024-bit DSA key pair:

ssh-keygen –b 1024 –t dsa

SSH Keys from other programs may be converted to the required XPort Pro format. Use Open SSH to perform the conversion.

To convert from RFC-4716 format:

ssh-keygen –i