System Command Reference
378 Basic System Configuration Guide
authentication-check
Syntax [no] authentication-check
Context config>system>time>ntp
Description This command provides the option to skip the rejection of NTP PDUs that do not match the
authentication key-id, type or key requirements. The default behavior when authentication is
configured is to reject all NTP protocol PDUs that have a mismatch in either the authentication key-
id, type or key.
When authentication-check is enabled, NTP PDUs are authenticated on receipt. However,
mismatches cause a counter to be increased, one counter for type and one for key-id, one for type, value
mismatches. These counters are visible in a show command.
The no form of this command allows authentication mismatches to be accepted; the counters however
are maintained.
Default authentication-check — Rejects authentication mismatches.
authentication-key
Syntax authentication-key key-id {key key} [hash | hash2] type {des | message-digest}
no authentication-key key-id
Context config>system>time>ntp
Description This command sets the authentication key-id, type and key used to authenticate NTP PDUs sent to or
received by other network elements participating in the NTP protocol. For authentication to work, the
authentication key-id, type and key value must match.
The no form of the command removes the authentication key.
Default none
Parameters key-id — Configure the authentication key-id that will be used by the node when transmitting or
receiving Network Time Protocol packets.
Entering the authentication-key command with a key-id value that matches an existing
configuration key will result in overriding the existing entry.
Recipients of the NTP packets must have the same authentication key-id, type, and key value
in order to use the data transmitted by this node. This is an optional parameter.
Default None
Values 1 to 255
key — The authentication key associated with the configured key-id, the value configured in this
parameter is the actual value used by other network elements to authenticate the NTP packet.
To Next Page
Loading...
