5-6
User
Guide

for

the

Cisco

Application

Networking

Manager

5.2
OL-26572-01
Chapter
5






Importing

and

Managing

Devices
Preparing
Devices

for

Import


Ensure
that

the

chassis
has

a

K9

(Triple

Data

Encryption

Standard

[3DES])

software
image
in

order
to
enable

the

SSH

server.

The

ANM

requires

SSHv2

to

be

enabled

on

the

chassis.
To
enable

SSH

or

Telnet

access

on

Catalyst

6500

series

switches

or

Cisco

7600

series

routers,

use

the
following
commands:
Enabling
SSH

Access

and

the

HTTPS

Interface

on

the

ACE

Module

and
Appliance
You
can

en

able

SSH

access

and

t

he

HTTPS

interface

on

the

ACE

modules

and

ap

pliances.

ANM

uses
SSH
and

XML

over

HTTPS

to

communicate

with

the

ACE

devices.

You

need

to

enable

both

SSH

access
and
HTTPS

as

explained

in

this

section.

These

settings

can

be

enabled

during

device

import

as

described
in
the

“Importing

Network

Devices

into

ANM”

section

on

page

5-10

or

in

the

CLI.
Note
If
the
ACE

module

or

appliance

is

new

and

still

has

its

factory

settings,

you

do

not

need

to

perform

the
procedure
in

this

section

because

SSH

is

enabled

by

default.
Note
Ensure
that

the

management

pol

icy
applied
on

the

management

interface

permits

SSH.
To
enable

SSH

access

and

the

HTTPS

interface

on

an

ACE

module

or

appliance,

enter

the

following
commands
in

config

mode

i

n

the

Admin

context:
Command
Purpose
Step
1
ip
ssh

version

2
Enables
SSHv2.
Step
2
ip
domain-name

abc.com
Step
3
crypto
key

generate

rsa

general-keys

modulus

1024
Generates
the

key.
Step
4
username
username

password

password
Enters
the

username

and

password.
Step
5
line
vty

0

4
Step
6
session-timeout
60
Step
7
login
local
This
is

an

example

only.

This

commands

works

for
Cisco
IOS

12.2.18SXF(10),

but

not

for
12.2.18SXF(8).
Step
8
transport
input

telnet

ssh
Allows
SSH

and

Telnet

to

the

chassis.
Step
9
transport
output

telnet

ssh
Allows
SSH

and
Telnet
from

the

chassis

to

the

ACE
module.
Command
Purpose
Step
1
ssh
key

rsa

1024

force
Configures
SSH

access

on

the

ACE.
Step
2
access-list
acl

line

10

extended

permit

ip

any

any