Configuring Ntp Authentication; Configuration Prerequisites; Configuration Procedure - H3C S5820X Series Configuration Manual

Network management and monitoring

Hide thumbs Also See for S5820X Series:

Command reference manual (488 pages)

High availability configuration manual (233 pages)

Configuration manual (209 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

217

218

219

220

221

222

223

224

225

226

227

228

229

230

231

232

233

234

235

236

237

238

239

240

241

242

243

244

245

246

247

248

249

250

251

252

Table of Contents

The access-control right mechanism provides only a minimum degree of security protection for

the system running NTP. A more secure method is NTP authentication.

Configuring NTP Authentication

The NTP authentication feature should be enabled for a system running NTP in a network

where there is a high security demand. This feature enhances the network security by means of

client-server key authentication, which prohibits a client from synchronizing with a device that

has failed authentication.

Configuration Prerequisites

The configuration of NTP authentication involves configuration tasks to be implemented on the

client and on the server.

When configuring NTP authentication, note the following:

For all synchronization modes, when you enable the NTP authentication feature, configure

an authentication key and specify it as a trusted key. In other words, the ntp-service

authentication

authentication-keyid command and the ntp-service reliable authentication-keyid

command. Otherwise, the NTP authentication function cannot be normally enabled.

For the client/server mode or symmetric mode, associate the specified authentication key

on the client (symmetric-active peer if in the symmetric peer mode) with the corresponding

NTP server (symmetric-passive peer if in the symmetric peer mode). Otherwise, the NTP

authentication feature cannot be normally enabled.

For the broadcast server mode or multicast server mode, associate the specified

authentication key on the broadcast server or multicast server with the corresponding NTP

server. Otherwise, the NTP authentication feature cannot be normally enabled.

For the client/server mode, if the NTP authentication feature has not been enabled for the

client, the client can synchronize with the server regardless of whether the NTP

authentication feature has been enabled for the server or not. If the NTP authentication is

enabled on a client, the client can be synchronized only to a server that can provide a

trusted authentication key.

For all synchronization modes, the configurations on the server and client side must be the

same.

Configuration Procedure

Configuring NTP authentication for a client

Follow these steps to configure NTP authentication for a client:

enable

command

3-15

must

work

together

with

the

ntp-service

Table of Contents

Troubleshooting

This manual is also suitable for:

S5800 series

Configuring Ntp Authentication; Configuration Prerequisites; Configuration Procedure - H3C S5820X Series Configuration Manual

Configuring NTP Authentication

Configuration Prerequisites

Configuration Procedure

Troubleshooting

Related Manuals for H3C S5820X Series

Related Content for H3C S5820X Series

This manual is also suitable for:

Table of Contents