EasyManua.ls Logo

HPE FlexNetwork MSR3012 User Manual

HPE FlexNetwork MSR3012
475 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #126 background imageLoading...
Page #126 background image
116
Related commands
sntp authentication-keyid
sntp reliable authentication-keyid
sntp authentication-keyid
Use sntp authentication-keyid to set an SNTP authentication key.
Use undo sntp authentication-keyid to remove an SNTP authentication key.
Syntax
sntp authentication-keyid keyid authentication-mode md5 { cipher | simple } string [ acl
ipv4-acl-number | ipv6 acl ipv6-acl-number ] *
undo sntp authentication-keyid keyid
Default
No SNTP authentication key is set.
Views
System view
Predefined user roles
network-admin
Parameters
keyid: Specifies a key ID to identify an authentication key, in the range of 1 to 4294967295.
authentication-mode md5 value: Uses the MD5 algorithm for key authentication.
cipher: Specifies a key in encrypted form.
simple: Specifies a key in plaintext form. For security purposes, the key specified in plaintext form
will be stored in encrypted form.
string: Specifies the key. Its plaintext form is a case-sensitive string of 1 to 32 characters. Its
encrypted form is a case-sensitive string of 1 to 73 characters.
acl ipv4-acl-number: Specifies an IPv4 basic ACL by its number in the range of 2000 to 2999. Only
the devices permitted by the ACL can use the key ID for authentication.
ipv6 acl ipv6-acl-number: Specifies an IPv6 basic ACL by its number in the range of 2000 to 2999.
Only the devices permitted by the ACL can use the key ID for authentication.
Usage guidelines
You need to enable SNTP authentication in networks that require time synchronization security to
make sure SNTP clients are synchronized only to authenticated NTP servers.
The key ID in the message from the peer device identifies the key used for authentication. The acl
ipv4-acl-number and acl ipv6-acl-number options are used to identify the peer device that can use
the key ID.
•
If the specified IPv4 or IPv6 ACL does not exist, any device can use the key ID for
authentication.
•
If the specified IPv4 or IPv6 ACL does not contain any rules, no device can use the key ID for
authentication.
To ensure a successful authentication, configure the same key ID, authentication algorithm, and key
on the time server and client.
After you configure an SNTP authentication key, use the sntp reliable authentication-keyid
command to set it as a trusted key. The key automatically changes to untrusted after you delete the

Table of Contents

Question and Answer IconNeed help?

Do you have a question about the HPE FlexNetwork MSR3012 and is the answer not in the manual?

HPE FlexNetwork MSR3012 Specifications

General IconGeneral
BrandHPE
ModelFlexNetwork MSR3012
CategoryNetwork Router
LanguageEnglish

Summary

Ping, tracert, and system debugging commands

ping

Tests reachability of destination IP address and displays ping statistics.

tracert

NQA commands

NQA client commands

Configures NQA client operations, including factors, codec types, and data parameters.

NTP commands

SNTP commands

PoE commands

apply poe-profile

Applies a PoE profile to a power interface (PI).

SNMP commands

display snmp-agent community

Displays SNMPv1 or SNMPv2c community information.

snmp-agent community

Configures an SNMPv1 or SNMPv2c community.

snmp-agent target-host

Configures an SNMP notification target host.

snmp-agent trap enable

Enables SNMP notifications.

RMON commands

display rmon alarm

Displays information about RMON alarm entries.

rmon alarm

Event MIB commands

NETCONF commands

CWMP commands

cwmp enable

Enables CWMP.

EAA commands

action cli

Adds a CLI action to a monitor policy.

rtm cli-policy

Creates a CLI-defined EAA monitor policy and binds it to a Tcl script file.

Process monitoring and maintenance commands

display exception context

Displays context information for process exceptions.

display kernel deadloop

Displays kernel thread deadloop information.

display process

Displays process state information.

monitor kernel starvation enable

Enables kernel thread starvation detection.

Port mirroring commands

mirroring-group

Creates a mirroring group.

Flow mirroring commands

mirror-to

NetStream configuration commands

IPv6 NetStream commands

sFlow commands

Information center commands

Related product manuals