display ssh server

Function

The display ssh server command displays the SSH server information.

Format

display ssh server { status | session }

Parameters

Parameter	Description	Value
status	Displays the global configuration on the SSH server.	-
session	Displays the current session connection information on the SSH server.	-

Views

All views

Default Level

3: Management level

Usage Guidelines

After configuring the SSH attributes, you can run this command to view the configuration or session connection information on the SSH server to verify that the SSH connection has been established.

Example

# Display the global configuration on the SSH server.

<HUAWEI> display ssh server status

 SSH version                         :2.0
 SSH connection timeout              :60 seconds
 SSH server key generating interval  :0 hours
 SSH authentication retries          :3 times
 SFTP IPv4 server                    :Enable
 SFTP IPv6 server                    :Enable
 STELNET IPv4 server                 :Enable
 STELNET IPv6 server                 :Enable
 SCP IPv4 server                     :Enable
 SCP IPv6 server                     :Enable
 SSH server source                   :0.0.0.0
 ACL4 number                         :0
 ACL6 number                         :0

**Table 1** Description of the **display ssh server status** command output
Item	Description
SSH version	Protocol version used for the SSH session connection.
SSH connection timeout	Timeout interval of SSH server authentication, in seconds. Run the ssh server timeout command to set this item.
SSH server key generating interval	Interval for generating an SSH server password, in hours. Run the ssh server rekey-interval command to set this item.
SSH authentication retries	Number of times for retrying the SSH session connection. Run the ssh server authentication-retries command to set this item.
SFTP IPv4 server	SFTP IPv4 service status. Run the sftp ipv4 server enable command to set this item.
SFTP IPv6 server	SFTP IPv6 service status. Run the sftp ipv6 server enable command to set this item.
STELNET IPv4 server	STelnet IPv4 service status. Run the stelnet ipv4 server enable command to set this item.
STELNET IPv6 server	STelnet IPv6 service status. Run the stelnet ipv6 server enable command to set this item.
SCP IPv4 server	SCP IPv4 service status. Run the scp ipv4 server enable command to set this item.
SCP IPv6 server	SCP IPv6 service status. Run the scp ipv6 server enable command to set this item.
SSH server source	Source address of the SSH server. Run the ssh server-source -i loopback interface-number command to set this item.
ACL4 number	ACL4 number of the SSH server. Run the ssh server acl acl-number command to set this item.
ACL6 number	ACL6 number of the SSH server. Run the ssh ipv6 server acl acl-number command to set this item.

# Display the current session connection information on the SSH server.

<HUAWEI> display ssh server session

  Session 1:
       Conn                 : VTY 10
       Version              : 2.0
       State                : started
       Username             : client002
       Retry                : 1
       CTOS Cipher          : aes256-cbc
       STOC Cipher          : aes256-cbc
       CTOS Hmac            : hmac-sha2_256
       STOC Hmac            : hmac-sha2_256
       CTOS Compress        : none
       STOC Compress        : none
       Kex                  : diffie-hellman-group1-sha1
       Public Key           : rsa
       Service Type         : sftp
       Authentication Type  : password
  Session 2:
       Conn                 : VTY 14
       Version              : 2.0
       State                : started
       Username             : client001
       Retry                : 1
       CTOS Cipher          : aes256-cbc
       STOC Cipher          : aes256-cbc
       CTOS Hmac            : hmac-sha2_256
       STOC Hmac            : hmac-sha2_256
       CTOS Compress        : none
       STOC Compress        : none
       Kex                  : diffie-hellman-group1-sha1
       Public Key           : dsa
       Service Type         : stelnet
       Authentication Type  : password

**Table 2** Description of the **display ssh server session** command output
Item	Description
Session	SSH session ID.
Conn	Connection used by the SSH session.
Version	Protocol version used for the SSH session connection.
State	Status of the SSH session connection.
Username	User name for SSH session connection. Run the ssh user command to set this item.
Retry	Number of times for retrying the SSH session connection. Run the ssh server authentication-retries command to set this item.
CTOS Cipher	Encryption algorithm name from client to server.
STOC Cipher	Encryption algorithm name from server to client.
CTOS Hmac	HMAC algorithm name from client to server.
STOC Hmac	HMAC algorithm name from server to client.
CTOS Compress	Whether data is compressed for transmission from client to server, which can be specified for SCP connection.
STOC Compress	Whether data is compressed for transmission from server to client, which can be specified for SCP connection.
Kex	Exchange algorithm name.
Public Key	Public key algorithm used for server authentication, which can be RSA, DSA, or ECC.
Service Type	Service type for an SSH user. The options are as follows: sftp stelnet all (including SCP, SFTP and STelnet) Run the ssh user service-type command to set this item.
Authentication Type	Authentication mode for an SSH user. The options are as follows: password rsa dsa ecc password-rsa (password and RSA) password-dsa (password and DSA) password-ecc (password and ECC) all (password, ECC, DSA, or RSA) Run the ssh user authentication-type command to set this item.