thread798-1488541
I'll be nice since I found this via Nortel Docs provided with our 5.0 system in about 15 minutes ...
SSH is enabled by default but not available until you do the key generation:
Manage SSH keys using overlays
Use the procedures in this section to generate, activate, view, or clear SSH
keys using overlays.
Use the following procedure to generate SSH keys from the call server.
Procedure 101
Generating SSH keys by using LD 117
Step Action
1 Log on to the system using a PWD2 account that has ACCT=YES.
2 At the LD 117 prompt, enter SSH KEY GENERATE
{ACTIVE|INACTIVE|CABINET [n]} For more information about
the arguments for this command, see Table 51 "Job aid: arguments
for SSH KEY GENERATE" (page 292).
The generated key is stored in a pending state until it is activated.
Table 51
Job aid: arguments for SSH KEY GENERATE
Command argument Purpose
SSH KEY GENERATE To generate a key on a one-CPU system.
SSH KEY GENERATE
ACTIVE
To generate a key using the active core on a
two-CPU system.
SSH KEY GENERATE
INACTIVE
To generate a key using the inactive core on a
two-CPU system.
SSH KEY GENERATE
CABINET [n]
To generate a key on the MG1000E.
The variable [n] identifies the cabinet, and can be
a number, or the keyword ALL.
Use the following procedure to activate SSH keys from the call server.
Procedure 102
Activating SSH keys by using LD 117
Step Action
1 Log on to the system using a PWD2 account that has ACCT=YES.
2 At the LD 117 prompt, enter SSH KEY ACTIVATE
{ACTIVE|INACTIVE|CABINET [n]} For more information about
the arguments for this command, see Table 52 "Job aid: arguments
for SSH KEY ACTIVATE" (page 292).
—End—
Table 52
Job aid: arguments for SSH KEY ACTIVATE
Command argument Purpose
SSH KEY ACTIVATE To activate the pending key by restarting the SSH
server on the call server.
SSH KEY ACTIVATE
ACTIVE
To activate the pending key by restarting the SSH
server on the active core in a two-CPU system.
SSH KEY ACTIVATE
INACTIVE
To activate the pending key by restarting the SSH
server on the inactive core in a two-CPU system.
SSH KEY ACTIVATE
CABINET [n]
To activate the pending key by restarting the SSH
server on the expansion cabinet or MG1000E.
The variable [n] identifies the cabinet, and can be
a number, or the keyword ALL.
Use the following procedure to view SSH keys from the call serve
Procedure 103
Viewing SSH keys by using LD 117
Step Action
1 Log on to the system.
2 At the LD 117 prompt, enter SSH KEY SHOW {ACTIVE|INACTIVE|
CABINET [n]} For more information about the arguments
for this command, see Table 53 "Job aid: arguments for SSH KEY
SHOW" (page 293).
—End—
Table 53
Job aid: arguments for SSH KEY SHOW
Command argument Purpose
SSH KEY SHOW To display the fingerprint of the public key of the
system.
SSH KEY SHOW ACTIVE To display the fingerprint of the public key of the
active core on a two-CPU system.
SSH KEY SHOW
INACTIVE
To display the fingerprint of the public key of the
inactive core on a two-CPU system.
SSH KEY SHOW
CABINET [n]
To display the fingerprint of the public key of the
expansion cabinet or MG1000E system.
The variable [n] identifies the cabinet, and can be
a number, or the keyword ALL.
Use the following procedure to clear SSH keys from the call server. You
must disable secure shells before you can clear SSH keys. For the
procedure to disable secure shells, see Procedure 96 "Managing secure
shell access by using LD 117" (page 287).
Procedure 104
Clearing SSH keys by using LD 117
Step Action
1 Log on to the system using a PWD2 account that has ACCT=YES.
2 At the LD 117 prompt, enter SSH KEY CLEAR {ACTIVE|INACTIVE|
CABINET [n]} For more information about the arguments
for this command, see Table 54 "Job aid: arguments for SSH KEY
CLEAR" (page 294).
Table 54
Job aid: arguments for SSH KEY CLEAR
Command argument Purpose
SSH KEY CLEAR To clear all of the public keys (active as well as
pending) stored on the system.
SSH KEY CLEAR
ACTIVE
To clear all of the public keys (active as well as
pending) stored on the active core.
SSH KEY CLEAR
INACTIVE
To clear all of the public keys (active as well as
pending) stored on the inactive core.
SSH KEY CLEAR
CABINET [n]
To clear all of the public keys (active as well
as pending) stored on the expansion cabinet or
MG1000E system.
The variable [n] identifies the cabinet, and can be a
number, or the keyword ALL.
Manage SSH keys using CLI
Use the procedures in this section to generate, activate, view, or clear SSH
keys from the OAM, PDT, or IPL prompt.
Use the following procedure to generate SSH keys by using CLI.
Procedure 105
Generating SSH keys by using OAM, PDT, or IPL
Step Action
1 Log on to the system using a PDT2 account.
2 At the OAM, PDT, or IPL prompt, enter sshKeyGenerate to
generate the key on the Call Server, Media Gateway Controller
(MGC), Signaling Server, or Voice Gateway Media Card.
The generated key is stored in a pending state until it is activated.
Use the following procedure to activate SSH keys by using CLI.
Procedure 106
Activating SSH keys by using OAM, PDT, or IPL
Step Action
1 Log on to the system using a PDT2 account.
2 At the OAM, PDT, or IPL prompt, enter sshKeyActivate to activate
the pending key by restarting the SSH server on the Call Server,
MGC, Signaling Server, or Voice Gateway Media Card.
—End—
Use the following procedure to view SSH keys by using CLI.
Procedure 107
Viewing SSH keys by using OAM, PDT, or IPL
Step Action
1 Log on to the system.
2 At the OAM, PDT, or IPL prompt, enter sshKeyShow to display
the fingerprint of the public key of the Call Server, MGC, Signaling
Server, or Voice Gateway Media Card. Displays both active and
pending keys.
—End—
Use the following procedure to clear SSH keys by using CLI. You must
disable secure shells before you can clear SSH keys.
Procedure 108
Clearing SSH keys by using OAM, PDT, or IPL
Step Action
1 Log on to the system using a PDT2 account.
2 At the OAM, PDT, or IPL prompt, enter sshKeyClear to clear all of
the public keys (active as well as pending) stored on the Call Server,
MGC, Signaling Server, or Voice Gateway Media Card.
.
I'll be nice since I found this via Nortel Docs provided with our 5.0 system in about 15 minutes ...
SSH is enabled by default but not available until you do the key generation:
Manage SSH keys using overlays
Use the procedures in this section to generate, activate, view, or clear SSH
keys using overlays.
Use the following procedure to generate SSH keys from the call server.
Procedure 101
Generating SSH keys by using LD 117
Step Action
1 Log on to the system using a PWD2 account that has ACCT=YES.
2 At the LD 117 prompt, enter SSH KEY GENERATE
{ACTIVE|INACTIVE|CABINET [n]} For more information about
the arguments for this command, see Table 51 "Job aid: arguments
for SSH KEY GENERATE" (page 292).
The generated key is stored in a pending state until it is activated.
Table 51
Job aid: arguments for SSH KEY GENERATE
Command argument Purpose
SSH KEY GENERATE To generate a key on a one-CPU system.
SSH KEY GENERATE
ACTIVE
To generate a key using the active core on a
two-CPU system.
SSH KEY GENERATE
INACTIVE
To generate a key using the inactive core on a
two-CPU system.
SSH KEY GENERATE
CABINET [n]
To generate a key on the MG1000E.
The variable [n] identifies the cabinet, and can be
a number, or the keyword ALL.
Use the following procedure to activate SSH keys from the call server.
Procedure 102
Activating SSH keys by using LD 117
Step Action
1 Log on to the system using a PWD2 account that has ACCT=YES.
2 At the LD 117 prompt, enter SSH KEY ACTIVATE
{ACTIVE|INACTIVE|CABINET [n]} For more information about
the arguments for this command, see Table 52 "Job aid: arguments
for SSH KEY ACTIVATE" (page 292).
—End—
Table 52
Job aid: arguments for SSH KEY ACTIVATE
Command argument Purpose
SSH KEY ACTIVATE To activate the pending key by restarting the SSH
server on the call server.
SSH KEY ACTIVATE
ACTIVE
To activate the pending key by restarting the SSH
server on the active core in a two-CPU system.
SSH KEY ACTIVATE
INACTIVE
To activate the pending key by restarting the SSH
server on the inactive core in a two-CPU system.
SSH KEY ACTIVATE
CABINET [n]
To activate the pending key by restarting the SSH
server on the expansion cabinet or MG1000E.
The variable [n] identifies the cabinet, and can be
a number, or the keyword ALL.
Use the following procedure to view SSH keys from the call serve
Procedure 103
Viewing SSH keys by using LD 117
Step Action
1 Log on to the system.
2 At the LD 117 prompt, enter SSH KEY SHOW {ACTIVE|INACTIVE|
CABINET [n]} For more information about the arguments
for this command, see Table 53 "Job aid: arguments for SSH KEY
SHOW" (page 293).
—End—
Table 53
Job aid: arguments for SSH KEY SHOW
Command argument Purpose
SSH KEY SHOW To display the fingerprint of the public key of the
system.
SSH KEY SHOW ACTIVE To display the fingerprint of the public key of the
active core on a two-CPU system.
SSH KEY SHOW
INACTIVE
To display the fingerprint of the public key of the
inactive core on a two-CPU system.
SSH KEY SHOW
CABINET [n]
To display the fingerprint of the public key of the
expansion cabinet or MG1000E system.
The variable [n] identifies the cabinet, and can be
a number, or the keyword ALL.
Use the following procedure to clear SSH keys from the call server. You
must disable secure shells before you can clear SSH keys. For the
procedure to disable secure shells, see Procedure 96 "Managing secure
shell access by using LD 117" (page 287).
Procedure 104
Clearing SSH keys by using LD 117
Step Action
1 Log on to the system using a PWD2 account that has ACCT=YES.
2 At the LD 117 prompt, enter SSH KEY CLEAR {ACTIVE|INACTIVE|
CABINET [n]} For more information about the arguments
for this command, see Table 54 "Job aid: arguments for SSH KEY
CLEAR" (page 294).
Table 54
Job aid: arguments for SSH KEY CLEAR
Command argument Purpose
SSH KEY CLEAR To clear all of the public keys (active as well as
pending) stored on the system.
SSH KEY CLEAR
ACTIVE
To clear all of the public keys (active as well as
pending) stored on the active core.
SSH KEY CLEAR
INACTIVE
To clear all of the public keys (active as well as
pending) stored on the inactive core.
SSH KEY CLEAR
CABINET [n]
To clear all of the public keys (active as well
as pending) stored on the expansion cabinet or
MG1000E system.
The variable [n] identifies the cabinet, and can be a
number, or the keyword ALL.
Manage SSH keys using CLI
Use the procedures in this section to generate, activate, view, or clear SSH
keys from the OAM, PDT, or IPL prompt.
Use the following procedure to generate SSH keys by using CLI.
Procedure 105
Generating SSH keys by using OAM, PDT, or IPL
Step Action
1 Log on to the system using a PDT2 account.
2 At the OAM, PDT, or IPL prompt, enter sshKeyGenerate to
generate the key on the Call Server, Media Gateway Controller
(MGC), Signaling Server, or Voice Gateway Media Card.
The generated key is stored in a pending state until it is activated.
Use the following procedure to activate SSH keys by using CLI.
Procedure 106
Activating SSH keys by using OAM, PDT, or IPL
Step Action
1 Log on to the system using a PDT2 account.
2 At the OAM, PDT, or IPL prompt, enter sshKeyActivate to activate
the pending key by restarting the SSH server on the Call Server,
MGC, Signaling Server, or Voice Gateway Media Card.
—End—
Use the following procedure to view SSH keys by using CLI.
Procedure 107
Viewing SSH keys by using OAM, PDT, or IPL
Step Action
1 Log on to the system.
2 At the OAM, PDT, or IPL prompt, enter sshKeyShow to display
the fingerprint of the public key of the Call Server, MGC, Signaling
Server, or Voice Gateway Media Card. Displays both active and
pending keys.
—End—
Use the following procedure to clear SSH keys by using CLI. You must
disable secure shells before you can clear SSH keys.
Procedure 108
Clearing SSH keys by using OAM, PDT, or IPL
Step Action
1 Log on to the system using a PDT2 account.
2 At the OAM, PDT, or IPL prompt, enter sshKeyClear to clear all of
the public keys (active as well as pending) stored on the Call Server,
MGC, Signaling Server, or Voice Gateway Media Card.
.
Hope it was helpful anyway and thanks for the star.