1.2.2 Set 'transport input ssh' for 'line vty' connections

Information

Selects the Secure Shell (SSH) protocol.

Rationale:

Configuring VTY access control restricts remote access to only those authorized to manage the device and prevents unauthorized users from accessing the system.

Impact:

To reduce risk of unauthorized access, organizations should require all VTY management line protocols to be limited to ssh.

Solution

Apply SSH to transport input on all VTY management lines

hostname(config)#line vty <line-number> <ending-line-number>
hostname(config-line)#transport input ssh

See Also

https://workbench.cisecurity.org/files/3801

Item Details

Category: ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION

References: 800-53|AC-19, 800-53|IA-2(2), CSCv7|4.5

Plugin: Cisco

Control ID: b9741755db89f96e0e9c3029f0986fae9d1cee387f8f2a363eb1664e2796b54d