Troubleshooting
Problem
This document describes how to disable SSH Version 1 protocol on the HMC.
Resolving The Problem
HMC Version 7.3.2 and later supports an option to specify the SSH protocol version allowed for remote connections. Some security scan tools object to ssh protocol version 1 ("ssh 1.0"). To disable SSH protocol 1, you should do the following:
| 1. | Open a restricted shell window on the HMC. |
| 2. | Enable only SSH protocol 2: chhmc -c ssh --sshprotocol 2 -s modify |
| 3. | Restart the SSH daemon. Either stop and restart the HMC or restart the SSH daemon using the commands: chhmc -c ssh -s disable chhmc -c ssh -s enable |
Note: HMC Version 7.3.3 or later is required to list the current protocols using the lshmc command.
[{"Product":{"code":"SSB6AA","label":"Power System Hardware Management Console Physical Appliance"},"Business Unit":{"code":"BU054","label":"Systems w\/TPS"},"Component":"HMC","Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"Version Independent","Edition":"","Line of Business":{"code":"LOB08","label":"Cognitive Systems"}}]
Historical Number
564945983
Was this topic helpful?
Document Information
More support for:
Power System Hardware Management Console Physical Appliance
Software version:
Version Independent
Document number:
686385
Modified date:
22 September 2021
UID
nas8N1012185