How to Enable SSH on a Cisco Switch (Step-by-Step + Fixes)

Secure remote access is a basic requirement for managing Cisco switches. SSH replaces Telnet by encrypting login credentials and management traffic.

This guide shows how to enable SSH correctly—and what to check if it doesn’t work.


Step 1: Configure Hostname and Domain

hostname SW1
ip domain-name example.local

Step 2: Create a Local User

username admin privilege 15 secret YourPassword
enable secret YourEnablePassword

Step 3: Generate RSA Keys

crypto key generate rsa modulus 2048

Step 4: Enable SSH v2

ip ssh version 2

Step 5: Restrict VTY to SSH

line vty 0 15
login local
transport input ssh

Step 6: Ensure Management IP Exists

interface vlan 1
ip address 192.168.1.10 255.255.255.0
no shutdown

Common Issues

SSH not working

  • No management IP
  • VLAN interface down

Connection refused

  • VTY not set to SSH
  • Telnet still enabled

RSA key errors

  • Missing hostname/domain

How to Test

ssh -l admin 192.168.1.10

FAQ

Recommended RSA key size?
2048-bit

Does Catalyst 2960 support SSH?
Yes (with proper IOS)

How to disable Telnet?
Use transport input ssh

Final Tip

If you are configuring SSH across multiple switch models, check IOS support and lifecycle status in advance. Some older platforms may support SSH but lack newer security features.

评论

发表评论

此博客中的热门博文

图片
How and Why to Reset Your Cisco 9300 Switch: A Practical Guide with Real-World Tips Resetting a Cisco Catalyst 9300 switch may seem straightforward, but it’s a critical skill that network admins often need when deploying new devices, repurposing hardware, or recovering from configuration issues. In this guide, I’ll walk you through not just the steps but also some real-world insights that can save you time and headaches. Why Would You Reset a Cisco 9300? Imagine inheriting a switch with unknown or forgotten passwords or trying to fix a network glitch caused by a misconfiguration. Resetting the switch to factory defaults gives you a clean slate to start fresh. But be warned: resetting is not just about clearing settings. It can impact licensing, VLAN setups, and possibly your entire network topology if not done with proper preparation. A Real-World Story: Recovering From a Locked-Out Switch Recently, a client called in panic: they’d forgotten the admin password on their Cisco 930...
阅读全文
图片
CDW Alternatives for IT Hardware and Networking: A Comparison Guide For businesses looking to optimize IT procurement, CDW has long been a reliable choice. But alternatives exist that can offer competitive pricing, specialized services, and faster delivery . This guide compares the top CDW competitors and highlights why Router-Switch is a strong choice for networking and hardware solutions. 1. Global IT Distributors: Scale and Reach Tip: Global distributors are ideal for companies requiring a wide range of products and reliable delivery networks . 2. Value-Added Resellers (VARs): Customized IT Solutions VAR Strengths Best For SHI International Personalized IT solutions, software licensing expertise Large enterprises with complex IT environments Insight Cloud consulting, digital transformation Companies undergoing IT modernization or data center upgrades Connection Specialized in education and healthcare, cloud and cybersecurity Schools, hospitals, and sector-spe...
阅读全文
图片
Single Mode vs Multimode Fiber Distance, Cost, Applications (2025 Guide) When choosing fiber optic cabling for enterprise networks, one of the most common questions is: single mode vs multimode fiber —which one is better for my data center or campus network? This in-depth guide compares single-mode fiber (SMF) and multimode fiber (MMF) in terms of distance, bandwidth, cost, applications, and upgrade path . We’ll also answer frequently asked questions such as: What is the maximum distance for single mode fiber vs multimode fiber? Which is cheaper: single mode or multimode? What are the typical applications of SMF and MMF in data centers? Single Mode vs Multimode Fiber: Key Differences Distance and Performance Considerations Single Mode Fiber Distance 10GBASE-LR: up to 10 km 40G/100G LR4: up to 10 km DWDM solutions: >40 km Multimode Fiber Distance OM3: 10G up to 300 m, 40G/100G up to 100 m OM4: 10G up to 550 m, 40G/100G up to 150 m OM5: optimized f...
阅读全文