Table of Protocol-Specific Command-Line Options

Protocol Option And Mandatory Arguments

Related Options and Arguments

Description

/S session_name

none

Starts SecureCRT and opens a connection A data path or circuit between two computers over a phone line, network cable, or other means. with session_name.  If session_name  includes any spaces, it must be enclosed with quotation marks, (e.g., "My Session"). Multiple sessions can be opened by specifying  multiple "/S session_name" argument pairs on the command line.

Note: The /S option is considered a protocol-specific option because the protocol to be used is defined by the session A session is a set of options that are assigned to a connection to a remote machine. These settings and options are saved under a session name and allow the user to have different preferences for different hosts. parameters.

/T

/S

When used in conjunction with the /S options, the /T option opens the specified session or sessions in a separate tab or tabs. For example, the command:

     /T /S alpha

opens session alpha in a new tab. The command:

     /T /S alpha /S beta

opens both sessions alpha and beta in their own tabs.

Note: /T must precede /S in the command string.

The /T option can also be used with "ad hoc" sessions such as:

     /T /SSH2 myserver

/SSH1 [ssh_options] hostname

none

Starts SecureCRT and opens the default session with the SSH1 The first version of the SSH protocol which provides a way to encrypt network traffic between a client and a server. protocol and begins connecting to hostname. SecureCRT also accepts username@hostname syntax.

Note: /SSH1 and its related options are only available if SSH1 support was selected for installation during the installation process.

[ /ACCEPTHOSTKEYS ]

Instructs SecureCRT to automatically accept host keys.

[ / C cipher An algorithm used to encrypt data at varying levels of security. Examples include 3DES, AES, Blowfish, RC4, and Twofish. ]

Specifies a cipher for encrypting the session. Valid values for SSH1 cipher are NONE, DES, 3DES, RC4 and BLOWFISH. The default SSH1 cipher is 3DES.

[ /ENCRYPTEDPASSWORD password ]

Specifies a password in encrypted form. This password must have been encrypted by SecureCRT.

To obtain an encrypted password, specify a password in the Session Options dialog, then open that session's .ini file and copy the encrypted string from the Password field.

To use passwords in scripts, refer to the Session Object Connect method.

[ /I identityfile ]

Specifies the location of the user's identity file Identity files are two files containing the public-private key pair used to connect to an SSH server using RSA or DSA authentication. The Identity file contains the public and private key pair and is used by SecureCRT. The Identity.pub file contains only the public key which is usually appended to the authorized_keys file. . The identity file contains the private key needed to connect to the server using RSA authentication The process of verifying that an individual truly is who he or she claims to be. Supplying a password is a very common method of authentication. The most secure method of authentication supported in SecureCRT is public-key authentication. See also: identity file, public-private key pair. . The absence of this option causes password authentication to be used.

[ /L  username ]

Specifies the username when connecting to the SSH1 server A computer program that provides services to other computer programs (called clients). Often the computer on which a server program runs is also called a server. The term host is often used as a synonym for server. .

[ /P  port ]

Specifies the SSH server port. The default value is 22.

[ /PASSPHRASE  passphrase ]

Logs on to the SSH1 server using passphrase as the passphrase A password used to protect a private key from unauthorized use. It is recommended that a passphrase be assigned to all private keys to prevent unauthorized use, especially in environments where multiple individuals have access to the machine on which the private key files are stored. When using public-key authentication, a private key with an assigned passphrase will not be available if the correct passphrase is not supplied during the authentication process. for the identity file given with the /L option.

[ /PASSWORD  password ]

Logs on to the SSH1 server using password as the password for the username given with the /L option.

[ / Z  compressionlevel ]

Specifies the compression level from 1 (lowest compression = fastest) to 9 (highest compression = slowest). Setting this option to 0 turns off compression.

/SSH2 [ssh_options] hostname

none

Starts SecureCRT and opens the default session with the SSH2 The second version of the SSH protocol which provides a way to encrypt network traffic between a client and a server, with a slightly different set of security features than the SSH1 protocol provides. protocol and begins connecting to hostname. SecureCRT also accepts username@hostname syntax.

Note: /SSH2 and its related options are only available if SSH2 support was selected for installation during the installation process.

[ /ACCEPTHOSTKEYS ]

Instructs SecureCRT to automatically accept host keys.

[ /AUTH method ]

Specifies the authentication method(s) to be attempted when connecting to the SSH2 server. If multiple methods are specified, they must be comma-separated with no spaces (i.e., /AUTH password,publickey,keyboard-interactive,gssapi)

[ /C  cipher ]

Specifies a cipher for encrypting the session. Valid values for SSH2 cipher are NONE, 3DES, RC4, and TWOFISH. The default SSH2 cipher is 3DES.

[ /COMPRESSIONS  type ]

Specifies the compression type for the session. Valid values for SSH2 compression type are NONE, ZLIB, and [email protected]. The default type is NONE.

[ /ENCRYPTEDPASSWORD  password ]

Specifies a password in encrypted form. This password must have been encrypted by SecureCRT.

To obtain an encrypted password, specify a password in the Session Options dialog, then open that session's .ini file and copy the encrypted string from the Password field.

To use passwords in scripts, refer to the Session Object Connect method.

[ /I  identityfile ]

Specifies the location of the user's identity file. The identity file contains the private key needed to connect to the server using public-key authentication. The absence of this option causes password authentication to be used.

[ /L  username ]

Specifies the username when connecting to the SSH2 server.

[ /LOCAL  [localip:]localport:hostname:hostport]

Allows you to specify a local listening IP address when setting up a port forward (not required), and forwards connection requests from localport (on localhost) to hostport on hostname.

[ /M  MAC Message Authentication Code. A component of the SSH2 protocol consisting of a hashing algorithm used to ensure data integrity between an SSH2 client and an SSH2 server communicating over a TCP/IP network such as the internet. The MAC ensures data integrity by protecting against message alteration. ]

Specifies the Message Authentication Code (MAC) to use.

[ /P  port ]

Specifies the SSH2 server port. The default value is 22.

[ /PASSPHRASE  passphrase ]

Logs on to the SSH2 server using passphrase as the passphrase A password used to protect a private key from unauthorized use. It is recommended that a passphrase be assigned to all private keys to prevent unauthorized use, especially in environments where multiple individuals have access to the machine on which the private key files are stored. When using public-key authentication, a private key with an assigned passphrase will not be available if the correct passphrase is not supplied during the authentication process. for the identity file given with the /L option.

[ /PASSWORD  password ]

Logs on to the SSH2 server using password as the password for the username given with the /L option.

[ /REMOTE  [listenip:]listenport:destination-host:destination-port]

Allows you to specify a remote listening IP address when setting up a remote forward (not required), and requests the SSH2 server to accept connection requests on listenport (on the remote machine) and forward the requests to hostport on hostname.

[ /Z  compressionlevel ]

Specifies the compression level from 1 (lowest compression = fastest) to 9 (highest compression = slowest). Setting this option to 0 turns off compression.

/TELNET hostname [port]

none

/RLOGIN hostname

none

Starts SecureCRT and opens the default session with the RLogin protocol and begins connecting to hostname. SecureCRT also accepts username@hostname syntax.

[ /L  username ]

Specifies the username to use with the RLogin protocol.

/TAPI phone number

none

Starts SecureCRT and opens the default session with the TAPI protocol and begins connecting to the specified phone number.

Note: This command must be formatted as in the following example:

     /TAPI "+1 (555) 555-5555"

[ /REDIAL  attempts ]

Specifies the number of redial attempts that SecureCRT will make before giving up on the connection.

/SERIAL port

none

Starts SecureCRT and opens the default session with port. If no port value is entered, SecureCRT will use the value of the Port option in the Global Options / General / Default Session category. If no setting is entered for the default session, SecureCRT will use COM2 as the port entry.

Note: /SERIAL and its related options are only available if Serial capability is selected during installation.

[ /BAUD  baudrate ]

Set the baud rate. Valid values for baudrate are 110, 300, 600, 1200, 2400, 4800, 9600, 14400, 19200, 38400, 57600, 115200, 230400, 380400, 460800, and 921600. The default value is 38400.

[ /CTS  |  /NOCTS ]

Enable or Disable RTS/CTS (request-to-send/clear-to-send) hardware flow control. By default, RTS/CTS is enabled.

[ /DATA  databits ]

Set the data bits. Valid values for n are 5, 6, 7 or 8. The default value is 8.

[ /DSR  |  /NODSR ]

Enable or Disable DTR/DSR (data-terminal-ready/data-set-ready). By default, DTR/DSR are not enabled.

[ /PARITY  parity ]

Set the parity. Valid values for parity are NONE, ODD, EVEN, MARK, SPACE. The default is NONE.

[ /STOP  stopbits ]

Sets the stop bits. Valid values for stopbits are 0, 1 or 2 ( 0 indicates 1 stop bit, 1 indicates 1.5 stop bits, 2 indicates 2 stop bits). The default value is 0 (1 stop bit).

[ /XON  |  /NOXON]

Enable or Disable XON/XOFF software flow control. By default, software flow control is disabled.