Invite a Co-worker
Send a co-worker an invite to the Exchange portal.Just enter their email address and we’ll connect them to register. After joining, they will belong to the same company.
Send Invite Cancel
81002members
347233posts

How to check current running SSH version on AP9630

Solved
BillP
Administrator Administrator
Administrator
0 Likes
3
123

How to check current running SSH version on AP9630

This question was originally posted by Hugo on APC forums on 11/11/2016


As title, I am trying to verify the current running SSH version on AP9630 (AOS 5.0.1) through CLI.

seems no existing command would be able to do so and I could not obtain that info. from web UI.

Thanks

Tags (2)

Accepted Solutions
BillP
Administrator Administrator
Administrator
0 Likes
0
123

Re: How to check current running SSH version on AP9630

This reply was originally posted by Angela on APC forums on 11/14/2016


Hi Hugo,

AOS v5.X.X for AP9630 is really ancient and so is the SSH server within it. AP9630, which is Network Management Card 2 (NMC2) automatically negotiates up to the highest supported protocols typically. We've changed that in recent revs for TLS versions but that is the way it works for SSH still today because of what I'll mention below.

v5.0.X was the original firmware for AP9630 and I do believe it did support SSHv1 and SSHv2. Around 5.1.X somewhere, we removed it and I can confidently say, modern firmwares only support SSHv2 for security reasons.

AOS 1.X., 2.X, and 3.X devices were our older NMC1s which allowed the user to enable/disable certain versions of protocols for performance reasons. 

I'd definitely recommend that you upgrade firmware to v6.4 to take advantage of our security enhancements and a modern SSHv2 server. 

See Answer In Context

3 Replies 3
UnexpectedBill_apc
Captain
Captain
0 Likes
0
123

Re: How to check current running SSH version on AP9630

This was originally posted on APC forums on 11/12/2016


Are you referring to SSH protocol version or the actual version of the software providing the SSH service?

BillP
Administrator Administrator
Administrator
0 Likes
0
123

Re: How to check current running SSH version on AP9630

This reply was originally posted by Hugo on APC forums on 11/14/2016


Thanks for reply, should be SSH protocol.

I tried to use putty with SSHv1 to connect and got failed message while it works fine using SSHv2.

anyway, I just need to verify the supported SSH version

which I believe the meun from lower firmware of AOS (2.6.4) would be able to do that.

something like (2) - Network -> (5) - Telnet/SSH

the  2- Protocol Mode is what I am looking for.

BillP
Administrator Administrator
Administrator
0 Likes
0
124

Re: How to check current running SSH version on AP9630

This reply was originally posted by Angela on APC forums on 11/14/2016


Hi Hugo,

AOS v5.X.X for AP9630 is really ancient and so is the SSH server within it. AP9630, which is Network Management Card 2 (NMC2) automatically negotiates up to the highest supported protocols typically. We've changed that in recent revs for TLS versions but that is the way it works for SSH still today because of what I'll mention below.

v5.0.X was the original firmware for AP9630 and I do believe it did support SSHv1 and SSHv2. Around 5.1.X somewhere, we removed it and I can confidently say, modern firmwares only support SSHv2 for security reasons.

AOS 1.X., 2.X, and 3.X devices were our older NMC1s which allowed the user to enable/disable certain versions of protocols for performance reasons. 

I'd definitely recommend that you upgrade firmware to v6.4 to take advantage of our security enhancements and a modern SSHv2 server.