R3721-F3210-F3171-HP High-End Firewalls System Management and Maintenance Command Reference-6PW101
130
Description
Use ntp-service authentication enable to enable NTP authentication.
Use undo ntp-service authentication enable to disable NTP authentication.
By default, NTP authentication is disabled.
Related commands: ntp-service authentication-keyid and ntp-service reliable authentication-keyid.
Examples
# Enable NTP authentication.
<Sysname> system-view
[Sysname] ntp-service authentication enable
ntp-service authentication-keyid
Syntax
ntp-service authentication-keyid keyid authentication-mode md5 value
undo ntp-service authentication-keyid keyid
View
System view
Default level
3: Manage level
Parameters
keyid: Authentication key ID, which ranges from 1 to 4294967295.
authentication-mode md5 value: Specifies to use the MD5 algorithm for key authentication, where value
represents authentication key and is a string of 1 to 32 characters.
Description
Use ntp-service authentication-keyid to set the NTP authentication key.
Use undo ntp-service authentication-keyid to remove the set NTP authentication key.
By default, no NTP authentication key is set.
In a network where there is a high security demand, the NTP authentication feature should be enabled
for a system running NTP. This feature enhances the network security by means of the client-server key
authentication, which prohibits a client from synchronizing with a device that has failed authentication.
When the NTP authentication key is configured, configure the key as a trusted key by using the
ntp-service reliable authentication-keyid command.
Presently the system supports only the MD5 algorithm for key authentication.
A maximum of 1,024 keys can be set for each device.
If an NTP authentication key is specified as a trusted key, the key automatically changes to untrusted after
you delete the key. In this case, you do not need to execute the undo ntp-service reliable
authentication-keyid command.
Related commands: ntp-service reliable authentication-keyid.
Examples
# Set an MD5 authentication key, with the key ID of 10 and key value of BetterKey.