ssh server key-re-exchange enable

Use ssh server key-re-exchange enable to enable SSH algorithm renegotiation and key re-exchange.

Use undo ssh server key-re-exchange enable to disable SSH algorithm renegotiation and key re-exchange.

Syntax

ssh server key-re-exchange enable [ interval interval ]

undo ssh server key-re-exchange enable

Default

SSH algorithm renegotiation and key re-exchange are disabled.

Views

System view

Predefined user roles

network-admin

mdc-admin

Parameters

interval interval: Specifies an interval for SSH algorithm renegotiation and key re-exchange, in the range of 1 to 24 hours. If you do not specify this option, the SSH server initiates SSH algorithm renegotiation and key re-exchange at intervals of 1 hour.

Usage guidelines

This command is not available in FIPS mode.

This command enables the SSH server to renegotiate algorithms and re-exchange keys at regular intervals after the first algorithm negotiation and key exchange with SSH clients.

This command takes effect only on new SSH connections that are established after the command is configured, and it does not affect existing SSH connections.

Examples

# Enable SSH algorithm renegotiation and key re-exchange.

<Sysname> sysname
[Sysname] ssh server key-re-exchange enable