Description | This article describes the easy way to verify the running SSH server version in the FortiManager/FortiAnalyzer. |
Scope | FortiManager/FortiAnalyzer. |
Solution |
From Windows or Linux machine, it is simply possible to run a Telnet to the port number TCP/22 to verify this, the Telnet session will return the version information.
For example, as follows, the SSH server is running as SSH version 2.0 as the return information of SSH-2.0.
Replace the IP address with the real FortiManager/FortiAnalyzer IP address when performing the Telnet.
1) Windows machine:
C:\Users\PC>telnet <FortiManager/FortiAnalyzer IP address> 22 SSH-2.0-OpenSSH_9.0
2) Linux machine:
root@ubt01:/home/fortinet# telnet <FortiManager/FortiAnalyzer IP address> 22
3) From FortiManager/FortiAnalyzer directly, if the shell password is enabled, make sure to note down the set password as it is not recoverable if the password is lost. The best practice is to set a blank password or disable the shell access right after to verify the detail from the shell.
Enable shell access:
FAZVM64 # config sys admin setting (setting)# set shell-access enable (setting)# end
Enter the shell:
FAZVM64 # exe shell
Enter the command ssh -V to see the version:
bash$ ssh -V
Disable shell access:
FAZVM64 # config sys admin setting (setting)# set shell-access disable (setting)# end |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.