PPP Commands
Example 2
Figure
(using chap) with only Site B issuing the challenge. The configuration example follows.
Refer to the following sample configuration for the preceding example. On Site A enter the
following commands:
XSR(config)#interface serial 1/0
XSR(config-if<S1/0>)#encapsulation ppp
XSR(config-if<S1/0>)#ppp authentication chap
On Site B enter the following commands:
XSR(config)#interface serial 1/1
XSR(config-if<S1/1>)#encapsulation ppp
XSR(config-if<S1/1)#no ppp authentication
ppp chap
This command specifies a unique hostname on an interface, refuses CHAP authentication requests
from peers, or uses a default password during CHAP authentication when no other password is
available. It can enable multiple routers to appear to have the same hostname when using CHAP
authentication.
This command can be used to set a default password during authentication challenges when the
challengerʹs username cannot be found in the username list. It is also required when the
challenger does not specify its name in the challenge packet and a default password must be sent.
Be aware that this password is only used in response to challenges and is not used to authenticate
the peer.
Syntax
ppp chap {hostname hostname | refuse | password word}
hostname
refuse
word
8-88 Configuring the Point-to-Point Protocol
8‐2 shows two routers, Site A and Site B, and only one peer configured to do authentication
Figure 8-2
Site A
(Serial Interface 1/0)
Response - ID 9
Alternate name sent in the CHAP challenge.
Refuse to authenticate using CHAP.
Default password sent to CHAP challenges when no passwords are available.
Authentication Configured on One Peer
no ppp authentication
ppp chap
Site B
(Serial Interface 1/1)
Challenge - ID 9
Success/Failure - ID 9