107
Views
System view
Predefined user roles
network-admin
Parameters
keyid: Specifies a key ID to identify an authentication key, in the range of 1 to 4294967295.
authentication-modemd5value: Uses the MD5 algorithm for key authentication.
cipher: Specifies a key in encrypted form.
simple: Specifies a key in plaintext form.For security purposes, the key specified in plaintext form
will be stored in encrypted form.
string: Specifies the key. Its plaintext formis a case-sensitive string of 1 to 32 characters.Its
encrypted form is a case-sensitive string of 1 to 73 characters.
Usage guidelines
In a network where there is a high security demand, the NTP authentication feature must be enabled
for a system running NTP. This feature enhances the network security by usingclient-server key
authentication, which prohibits a client from synchronizing toa device that has failed the
authentication.
Configure the same key ID and key on the client and server.
After you specify an NTP authentication key, use the ntp-service reliable authentication-keyid
command to configure the key as a trusted key. The key automatically changes to untrusted after you
delete the key. In this case, you do not need to execute the undo ntp-service reliable
authentication-keyid command.
You can set a maximum of128 keys by executing the command.
Examples
# Set a plaintext MD5 authentication key, with the key ID of 10 and key value of BetterKey.
<Sysname> system-view
[Sysname] ntp-service authentication enable
[Sysname] ntp-service authentication-keyid 10 authentication-mode md5 simple BetterKey
Related commands
ntp-service authentication enable
ntp-service reliable authentication-keyid
ntp-service broadcast-client
Use ntp-service broadcast-clientto configure the device to operatein NTP broadcast client mode
and use the current interface to receive NTP broadcast packets.
Use undo ntp-service broadcast-clientto remove the configuration.
To Next Page
Loading...
Need help?
General
