Table of Contents
Advertisement
ntp-service authentication-keyid
Syntax
ntp-service authentication-keyid keyid authentication-mode md5 value
undo ntp-service authentication-keyid keyid
View
System view
Default Level
2: System level
Parameters
keyid: Authentication key ID, in the range of 1 to 4294967295.
authentication-mode md5 value: Specifies to use the MD5 algorithm for key authentication, where
value represents authentication key and is a string of 1 to 32 characters.
Description
Use the ntp-service authentication-keyid command to set the NTP authentication key.
Use the undo ntp-service authentication-keyid command to remove the set NTP authentication key.
By default, no NTP authentication key is set.
In a network where there is a high security demand, the NTP authentication feature should be enabled
for a system running NTP. This feature enhances the network security by means of the client-server
key authentication, which prohibits a client from synchronizing with a device that has failed
authentication.
After the NTP authentication key is configured, you need to configure the key as a trusted key by using
the ntp-service reliable authentication-keyid command.
Presently the system supports only the MD5 algorithm for key authentication.
You can set a maximum of 1,024 keys for each device.
If an NTP authentication key is specified as a trusted key, the key automatically changes to
untrusted after you delete the key. In this case, you do not need to execute the undo ntp-service
reliable authentication-keyid command.
Related commands: ntp-service reliable authentication-keyid.
Examples
# Set an MD5 authentication key, with the key ID of 10 and key value of BetterKey.
<Sysname> system-view
[Sysname] ntp-service authentication enable
[Sysname] ntp-service authentication-keyid 10 authentication-mode md5 BetterKey
19-7
Advertisement
Chapters
Table of Contents
