ssh certified-algorithms-only

Syntax

ssh certified-algorithms-only
no ssh certified-algorithms-only

Description

Restricts SSH to use only certified crypto algorithms for increased security. This restriction affects the cipher, MAC, key exchange, host key, and public key algorithms. Without this restriction, the default set of crypto algorithms is used.

The no form of this command reverts SSH to use the default set of crypto algorithms.

Command context

config

Authority

Operators or Administrators. Users without administrator authority can execute this command from the operator context (>) only.

Examples

Restricting SSH to use only certified crypto algorithms:

switch(config)# ssh certified-algorithms-only

Reverting SSH to use the default set of crypto algorithms:

switch(config)# no ssh certified-algorithms-only