SSHv2 management
-
PDF of this doc site
- Cluster administration
-
Volume administration
- Logical storage management with the CLI
-
NAS storage management
- Configure NFS with the CLI
- Manage NFS with the CLI
-
Manage SMB with the CLI
- Manage file access using SMB
- Security and data encryption
- Data protection and disaster recovery
Collection of separate PDF docs
Creating your file...
The security ssh modify
command replaces the existing configurations of the SSH key exchange algorithms, ciphers, or MAC algorithms for the cluster or an SVM with the configuration settings you specify.
NetApp recommends the following:
|
Supported ciphers and key exchanges
Ciphers | Key exchange |
---|---|
aes256-ctr |
diffie-hellman-group-exchange-sha256 (SHA-2) |
aes192-ctr |
diffie-hellman-group-exchange-sha1 (SHA-1) |
aes128-ctr |
diffie-hellman-group14-sha1 (SHA-1) |
aes256-cbc |
diffie-hellman-group1-sha1 (SHA-1) |
aes192-cbc |
- |
aes128-cbc |
- |
aes128-gcm |
- |
aes256-gcm |
- |
3des-cbc |
- |
Supported AES and 3DES symmetric encryptions
ONTAP also supports the following types of AES and 3DES symmetric encryptions (also known as ciphers):
-
hmac-sha1
-
hmac-sha1-96
-
hmac-md5
-
hmac-md5-96
-
hmac-ripemd160
-
umac-64
-
umac-64
-
umac-128
-
hmac-sha2-256
-
hmac-sha2-512
-
hmac-sha1-etm
-
hmac-sha1-96-etm
-
hmac-sha2-256-etm
-
hmac-sha2-512-etm
-
hmac-md5-etm
-
hmac-md5-96-etm
-
hmac-ripemd160-etm
-
umac-64-etm
-
umac-128-etm
The SSH management configuration applies to ONTAP and the platform BMC. |