Web OS 10.0 Application GuideChapter 5: Secure Switch Management n 107212777-A, February 2002Secure Shell and Secure CopyAlthough a remote network administrator can manage the configuration of an Alteon Webswitch via Telnet, this method does not provide a secure connection. Using Secure Shell (SSH)and Secure Copy (SCP), messages between a remote administrator and the switch use securetunnels so that the data on the network is encrypted and secured. Figure 5-1 on page 103 illus-trates secure switch management.N OTE ā SSH/SCP features are configured via the console port, using the CLI. However, SCPputcfg and TFTP getcfg can also change the SSH/SCP configuration.When SSH isenabled, SCP is also enabled.SSH is a protocol that enables a remote administrator to log securely into another computerover a network to execute management commands. All the data sent over the network usingSSH is encrypted and secured. Using SSH gives administrators an alternate way to manage theswitch, one that provides strong security.SCP is typically used to copy files securely from one machine to another. SCP uses SSH forencryption of data on the network. On an Alteon Web switch, SCP is used to download andupload the switch configuration via secure channels.The benefits of using SSH and SCP are listed below: Authentication of remote administratorsIdentifying the administrator using Name/Password Authorization of remote administratorsDetermining the permitted actions and customizing service for individual administrators Encryption of management messagesEncrypting messages between the remote administrator and switch Secure copy supportN OTE ā The Web OS implementation of SSH is based on SSH version 1.5 and supports SSH-1.5-1.x.xx. SSH clients of other versions (especially version 2) will not be supported. The fol-lowing SSH clients have been tested: SSH 1.2.23 and SSH 1.2.27 for Linux (freeware) SecureCRT 3.0.2 and SecureCRT 3.0.3 for Windows NT (Van Dyke Technologies, Inc.) F-Secure SSH 1.1 for Windows (Data Fellows)