Time Protocols
SNTP: Viewing, Selecting, and Configuring
succeeds. Only trusted key-id value information is used for SNTP authentica
tion. See"Configuring Unicast and Broadcast Mode" on page 9-21 for informa
tion about configuring these modes.
If the packet contains key-id value information that is not configured on the
SNTP client switch or the received packet contains no authentication infor
mation, it is discarded. The SNTP client switch expects packets to be authen
ticated if SNTP authentication is enabled.
When authentication succeeds, the time in the packet is used to update the
time on the switch.
Enter the following command to configure a key-id as trusted.
Syntax
Associating a Key with an SNTP Server
After a key is configured, it must be associated with a specific server.
Syntax
9-20
:
sntp authentication key-id <key-id> trusted
no sntp authentication key-id <key-id> trusted
Trusted keys are used during the authentication process. The
switch can be configured with up to eight sets of key-id/key
value pairs. One specific set must selected for authentication;
this is done by configuring the set as trusted.
The key-id itself must already be configured on the switch. To
enable authentication, at least one key-id must be configured
as trusted.
The no version of the command indicates the key is unreliable
(not trusted).
Default: No key is trusted by default.
:
[no] sntp server priority <1-3> <ip-address | ipv6-address> <version-num>
[key-id <1-4,294,967,295>]
Configures a key-id to be associated with a specific server. The
key itself must already be configured on the switch.
The no version of the command disassociates the key from the
server. This does not remove the authentication key.
Default: No key is associated with any server by default.
priority: Specifies the order in which the configured servers
are polled for getting the time. Value is between 1 and 3.