ssh macs

Syntax

ssh macsno ssh macs

Description

配置SSH使用一组of message authentication codes (MACs) in the specified priority order. The first MAC entered in the CLI is considered a first priority. MACs maintain the integrity of each message sent across an SSH connection. Each option represents an algorithm that can be used to provide integrity between peers. Only the MAC types that are specified by the user are configured.

Thenoform of this command removes the configuration of MACs and reverts SSH to use the default set of MACs.

Command context

config

Parameters

有效的MAC类型是:

  • hmac-sha1

  • hmac-sha1-96

  • hmac-sha1-etm@openssh.com

  • hmac-sha2-256

  • hmac-sha2-512

  • hmac-sha2-256-etm@openssh.com

  • hmac-sha2-512-etm@openssh.com

Default set of MACs in priority order:

  1. hmac-sha2-256-etm@openssh.com

  2. hmac-sha2-512-etm@openssh.com

  3. hmac-sha1-etm@openssh.com

  4. hmac-sha2-256

  5. hmac-sha2-512

  6. hmac-sha1

Authority

Administrators or local user group members with execution rights for this command.

Examples

Configuring SSH to use a set of specified MACs:

switch(config)#ssh macs hmac-sha2-256 hmac-sha2-512

Reverting SSH to use the default set of MACs:

switch(config)#no ssh macs