Table of Contents
Advertisement
JunosE 11.2.x Link Layer Configuration Guide
ppp chap-challenge-length
576
the ppp authentication virtual-router command specifies a nondefault VR, AAA
returns the specified VR.
If the VR specified in a profile with the ip virtual-router command differs from the
VR provided by AAA, IP uses the VR provided by AAA when the dynamic IP upper-layer
interface is created. For more information about using the ip virtual-router command,
see "ip virtual-router" on page 570.
The router supports the MD5 authentication algorithm for CHAP authentication.
Example 1—Specifies PAP or CHAP as the primary authentication protocol, and the
other authentication protocol as the alternative. For example, the following command
specifies pap as the primary authentication protocol and chap as the alternate.
host1(config-if)#ppp authentication pap chap
The router requests the use of PAP as the authentication protocol (because it appears
first in the command line). If the peer refuses to use PAP, the router requests the CHAP
protocol. If the peer refuses to negotiate authentication, the router terminates the PPP
session.
NOTE: The JunosE Software's PPP application accepts null usernames during PAP and
CHAP authentication. When the PPP application receives an authentication request
that includes a null username, PPP passes the request to AAA. To take advantage of
this feature, configure your authentication server to support the use of null usernames.
Example 2—Specifies a virtual router for the authentication virtual router context. This
command is available in static configurations and in profiles.
host1(config-if)#ppp authentication virtual-router boston pap chap
Use the no version to specify that the router does not require authentication.
See ppp authentication.
Use to modify the length of the CHAP challenge by specifying the minimum length and
maximum length.
CAUTION: Do not use the ppp chap-challenge-length command; increasing the
minimum length (from the default 16 bytes) or decreasing the maximum length (from
the default 32 bytes) reduces the security of your router.
Specify the minimum and maximum lengths in bytes in the range 8–63.
The maximum length must be greater than or equal to the minimum length.
Example
host1(config-profile)#ppp chap-challenge-length 24 28
Copyright © 2010, Juniper Networks, Inc.
Advertisement
Chapters
Table of Contents
Troubleshooting
Related Manuals for Juniper JUNOSE SOFTWARE 11.2.X - LINK LAYER CONFIGURATION GUIDE 7-7-2010
Related Products for Juniper JUNOSE SOFTWARE 11.2.X - LINK LAYER CONFIGURATION GUIDE 7-7-2010
- Juniper JUNOSE SOFTWARE 11.2.X - BROADBAND ACCESS CONFIGURATION GUIDE 7-20-2010
- Juniper JUNOS SOFTWARE 10.2 - SOFTWARE INSTALLATION AND UPGRADE GUIDE 4-28-2010
- Juniper JUNOS 10.1 - CONFIGURATION GUIDE 1-2010
- Juniper JUNOSE 11.1.X - BROADBAND ACCESS CONFIGURATION GUIDE 6-4-2010
- Juniper JUNOSE SOFTWARE 11.1.X - BROADBAND ACCESS CONFIGURATION GUIDE 6-6-2010
- Juniper JUNOSE 11.1.X - QUALITY OF SERVICE CONFIGURATION GUIDE 3-21-2010
- Juniper JUNOSE SOFTWARE 11.0.X - LINK LAYER CONFIGURATION GUIDE 4-1-2010
- Juniper JUNOSE SOFTWARE FOR E SERIES 11.0.X - BGP AND MPLS CONFIGURATION GUIDE 2009-12-30
- Juniper JUNOSE SOFTWARE FOR E SERIES 11.3.X - BGP AND MPLS CONFIGURATION GUIDE 2010-10-12
- Juniper JUNOSE SOFTWARE FOR E SERIES 11.3.X - IP SERVICES CONFIGURATION GUIDE 2010-10-01
- Juniper JUNOSE SOFTWARE FOR E SERIES 11.3.X - MULTICAST ROUTING CONFIGURATION GUIDE 2010-10-07
- Juniper JUNOSE SOFTWARE FOR E SERIES 11.3.X - PHYSICAL LAYER CONFIGURATION GUIDE 2010-09-24
- Juniper JUNOSE SOFTWARE FOR E SERIES 11.3.X - POLICY MANAGEMENT CONFIGURATION GUIDE 2010-10-04
- Juniper JUNOSE SOFTWARE FOR E SERIES 11.3.X - SERVICE AVAILABILITY CONFIGURATION GUIDE 2010-10-08
- Juniper JUNOSE SOFTWARE FOR E SERIES 11.3.X - LINK LAYER CONFIGURATION GUIDE 2010-10-13
- Juniper JUNOSE SOFTWARE FOR E SERIES 11.3.X - QUALITY OF SERVICE CONFIGURATION GUIDE 2010-09-22