We got some Procurve 2810 Gigabit switches. they play some critical roles, so I wanted to keep others from playing with them. The exact code below would enable https for web management, enable ssh for console management, change the port ssh runs on, and disable telnet and unencrypted web management.

crypto key generate ssh
show crypto host-public-key
crypto key generate cert 512
crypto host-cert generate self-signed 01/01/2009 01/01/2020 [ip address] [department] [company] Chicago IL us
ip ssh
no telnet-server
no web-management plaintext
ip ssh port [port num]
web management ssl
write memory


comments powered by Disqus