Configures the cipher priority list in SSH client symmetric encryption that is used to generate an SSH client key pair.

default

aes256-ctr,aes192-ctr,aes128-ctr,aes256-gcm@openssh.com,aes128-gcm@openssh.com,chacha20-poly1305@openssh.com, 
blowfish-cbc,3des-cbc,aes128-cbc 

aes256-ctr,aes192-ctr,aes128-ctr 

algorithm

Specifies the algorithm(s) to be used as a single string of comma-separated variables (no spaces) in priority order from those shown below:

• blowfish-cbc – symmetric-key block cipher, Cipher Block Chaining, CBC

• 3des-cbc – Triple Data Encryption Standard, CBC

• aes128-cbc – Advanced Encryption Standard, 128-bit key size, CBC

• aes128-ctr –Advanced Encryption Standard, 128-bit key size, Counter-mode encryption, CTR

• aes192-ctr – Advanced Encryption Standard, 192-bit key size, CTR

• aes256-ctr – Advanced Encryption Standard, 256-bit key size, CTR

• aes128-gcm@openssh.com – Advanced Encryption Standard, 128-bit key size, Galois Counter Mode [GCM], OpenSSH

• aes256-gcm@openssh.com – Advanced Encryption Standard, 256-bit key size, GCM, OpenSSH

• chacha20-poly1305@openssh.com – ChaCha20 symmetric cipher, Poly1305 cryptographic Message Authentication Code [MAC], OpenSSH

algorithm is a string of 1 through 511 alphanumeric characters.

Important

For release 20.0 and higher Trusted builds, only the AES128-CTR, AES-192-CTR and AES-256CTR ciphers are available.

Executes all show commands while in Configuration mode.

Exits the current configuration mode and returns to the Exec mode.

Exits the current mode and returns to the parent configuration mode.

Specifies the order in which the client should try SSH client protocol authentication methods. This allows the client to prioritize one method over another method – public key, keyboard-interactive and password.

default

publickey,password 

methods

Specifies the preferred methods of authentication to be used as a single string of comma-separated variables (no spaces) in priority order (left to right) from those shown below:

• publickey – authentication via SSH v2-RSA protocol.

• keyboard-interactive – request for an arbitrary number of pieces of information. For each piece of information the server sends the label of the prompt.

• password – simple request for a single password

Allows you to specify SSH client key parameters and generate an SSH client key pair.

no ssh key

Removes the specified SSH client key configuration. The only supported SSH client key type is V2-RSA.

generate key [ type v2-rsa ]

Generates SSH client key pairs based on parameters specified via the ssh key command. The only supported SSH client key type is V2-RSA.

key private_key_string length length_value [ type v2-rsa ]

Sets parameters for the SSH client keys.

• key private_key_string specifies a private key value as an alphanumeric string of 1 through 4499 characters.

• length key_length specifies the length of the key in bytes as an integer from 0 through 65535.

• type v2-rsa specifies the SSH client key type. The only supported SSH client key type is V2-RSA.

key-size { 2048 | 3072 | 4096 | 5120 | 6144 | 7168 | 9216 }

Specifies the key size for SSH client.