20
Table 3 NTP authentication results
Authentication
result
authenticatio
n
Configur
and
configure
trusted
Associat
passive
peer
authenticatio
n
Configure a
key and
configure it
as a trusted
key
Stratum level of the active and passive peers is not considered.
Yes Yes Yes Yes Yes Succeeded
Yes Yes Yes Yes No Failed
Yes Yes Yes No N/A Failed
Yes N/A No Yes N/A Failed
Yes N/A No No N/A No authentication
No N/A N/A Yes N/A Failed
No N/A N/A No N/A No authentication
The active peer has a higher stratum than the passive peer.
Yes No Yes N/A N/A Failed
The passive peer has a higher stratum than the active peer.
Yes No Yes Yes N/A Failed
Yes No Yes No N/A No authentication
Configuring NTP authentication in broadcast mode
To ensure a successful NTP authentication, configure the same authentication key ID, algorithm, and
key on the broadcast server and client. Make sure the peer device is allowed to use the key ID for
authentication on the local device.
To configure NTP authentication for a broadcast client:
1. Enter system view.
system-view
N/A
2.
authentication.
ntp-service authentication enable
By default, NTP authentication is
disabled.
3.
authentication key.
• Release 1111:
ntp-service
authentication-keyid keyid
authentication-mode md5
{ cipher | simple } value
• Release 1121 and later:
ntp-service
authentication-keyid keyid
authentication-mode
{ hmac-sha-1 | hmac-sha-256 |
hmac-sha-384 | hmac-sha-512 |
md5 } { cipher | simple } string
[ acl ipv4-acl-number | ipv6 acl
By default, no NTP authentication
key is configured.
To Next Page
Loading...
Need help?
General