Dell Networking Enable HTTPS and SSH and Disable HTTP and Telnet for Switch Management on Legacy PowerConnect 7000 and N-series Switches

• The switch is already configured with an IP address and is reachable within the network.
• There is an account created with Privilege Level 15. To verify this, use the command:

show users accounts

1. Connect to the switch by the console, telnet, or ssh.
2. The 7000 series requires a Privileged Exec (Enable) mode password for remote management over ssh or telnet. Failure to set this password may result in severely limited CLI management ability. Add an enable password:

console> enable
console# config
console(config)# enable password MYPASSWORD

3. To enable SSH, enter the following commands:

console(config)# crypto key generate rsa
console(config)# crypto key generate dsa
console(config)# ip ssh server

If issues arise with specific commands, ensure you are running the latest firmware version. 

4. To disable telnet, run: 

console(config)# ip telnet server disable

5. To enable HTTPS, enter the following commands:

console(config)# crypto certificate 1 generate
console(config-crypto-cert)# key-generate <512-2048>
console(config-crypto-cert)# exit
console(config)# ip http secure-certificate <1 - 2> Instance of the certificate to be activated.
console(config)# ip http secure-server

This system can generate and store two certificates. To generate the second key, replace the number 1 with 2. To activate the second key, use:

(config)# ip http secure-certificate 2

6. To disable HTTP, enter:

console(config)# no ip http server

7. After verifying connectivity using SSH or HTTPS, save the configuration by entering:

console# copy running-config startup-config