ssh server key-re-exchange enable
Use ssh server key-re-exchange enable to enable SSH algorithm renegotiation and key re-exchange.
Use undo ssh server key-re-exchange enable to disable SSH algorithm renegotiation and key re-exchange.
Syntax
ssh server key-re-exchange enable [ interval interval ]
undo ssh server key-re-exchange enable
Default
SSH algorithm renegotiation and key re-exchange are disabled.
Views
System view
Predefined user roles
network-admin
mdc-admin
Parameters
interval interval: Specifies an interval for SSH algorithm renegotiation and key re-exchange, in the range of 1 to 24 hours. If you do not specify this option, the SSH server initiates SSH algorithm renegotiation and key re-exchange at intervals of 1 hour.
Usage guidelines
This command is not available in FIPS mode.
This command enables the SSH server to renegotiate algorithms and re-exchange keys at regular intervals after the first algorithm negotiation and key exchange with SSH clients.
This command takes effect only on new SSH connections that are established after the command is configured, and it does not affect existing SSH connections.
Examples
# Enable SSH algorithm renegotiation and key re-exchange.
<Sysname> sysname [Sysname] ssh server key-re-exchange enable