System Management
7210 SAS D, E, K OS Basic System Configuration Guide Page 337
authentication-key
Syntax authentication-key key-id {key key} [hash | hash2] type {des | message-digest}
no authentication-key key-id
Context config>system>time>ntp
Description This command sets the authentication key-id, type and key used to authenticate NTP PDUs sent to or
received by other network elements participating in the NTP protocol. For authentication to work, the
authentication key-id, type and key value must match.
The no form of the command removes the authentication key.
Default none
Parameters key-id — Configure the authentication key-id that will be used by the node when transmitting or
receiving Network Time Protocol packets.
Entering the authentication-key command with a key-id value that matches an existing
configuration key will result in overriding the existing entry.
Recipients of the NTP packets must have the same authentication key-id, type, and key value in
order to use the data transmitted by this node. This is an optional parameter.
Default None
Values 1 — 255
key — The authentication key associated with the configured key-id, the value configured in this
parameter is the actual value used by other network elements to authenticate the NTP packet.
The key can be any combination of ASCII characters up to maximum 32 characters in length for
message-digest (md5) or maximum 8 characters in length for des (length limits are not
encrypted). If spaces are used in the string, enclose the entire string in quotation marks (“.”).
hash — Specifies the key is entered in an encrypted form. If the hash or hash2 parameter is not used,
the key is assumed to be in a non-encrypted, clear text form. For security, all keys are stored in
encrypted form in the configuration file with the hash or hash2 parameter specified.
hash2 — Specifies the key is entered in a more complex encrypted form that involves more variables
then the key value alone, this means that hash2 encrypted variable can’t be copied and pasted. If
the hash or hash2 parameter is not used, the key is assumed to be in a non-encrypted, clear text
form. For security, all keys are stored in encrypted form in the configuration file with the hash or
hash2 parameter specified.
type — This parameter determines if DES or message-digest authentication is used.
This is a required parameter; either DES or message-digest must be configured.
Values des — Specifies that DES authentication is used for this key
message-digest — Specifies that MD5 authentication in accordance with RFC 2104
is used for this key.
To Next Page
Loading...
