How to enable SSH on ASA

To enable ssh access to CISCO ASA you need to run following commands:

  1. Go to the config mode:
    ciscoasa# config t
  2. Provide the enable password:
    ciscoasa(config)# enable password <>
  3. Provide the username and password needed for ssh:
    ciscoasa(config)# username cisco password cisco
  4. Specify the authentication method as LOCAL. We can use RADIUS,TACACS+ instead of local:
    ciscoasa(config)# aaa authentication ssh console LOCAL
  5. Generate key for SSH:
    ciscoasa(config)# crypto key generate rsa modulus 2048
  6. Specify which subnet can do ssh and on which interface ssh access to be enabled:
    ciscoasa(config)# ssh 192.168.2.0 255.255.255.0 outside
  7. Enable management access on interface:
    management-access outside
Advertisements
This entry was posted in ASA and tagged , . Bookmark the permalink.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s