EasyManuals Logo
Home>HPE>Network Router>FlexNetwork MSR3012

HPE FlexNetwork MSR3012 User Manual

HPE FlexNetwork MSR3012
475 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #126 background imageLoading...
Page #126 background image
116
Related commands
sntp authentication-keyid
sntp reliable authentication-keyid
sntp authentication-keyid
Use sntp authentication-keyid to set an SNTP authentication key.
Use undo sntp authentication-keyid to remove an SNTP authentication key.
Syntax
sntp authentication-keyid keyid authentication-mode md5 { cipher | simple } string [ acl
ipv4-acl-number | ipv6 acl ipv6-acl-number ] *
undo sntp authentication-keyid keyid
Default
No SNTP authentication key is set.
Views
System view
Predefined user roles
network-admin
Parameters
keyid: Specifies a key ID to identify an authentication key, in the range of 1 to 4294967295.
authentication-mode md5 value: Uses the MD5 algorithm for key authentication.
cipher: Specifies a key in encrypted form.
simple: Specifies a key in plaintext form. For security purposes, the key specified in plaintext form
will be stored in encrypted form.
string: Specifies the key. Its plaintext form is a case-sensitive string of 1 to 32 characters. Its
encrypted form is a case-sensitive string of 1 to 73 characters.
acl ipv4-acl-number: Specifies an IPv4 basic ACL by its number in the range of 2000 to 2999. Only
the devices permitted by the ACL can use the key ID for authentication.
ipv6 acl ipv6-acl-number: Specifies an IPv6 basic ACL by its number in the range of 2000 to 2999.
Only the devices permitted by the ACL can use the key ID for authentication.
Usage guidelines
You need to enable SNTP authentication in networks that require time synchronization security to
make sure SNTP clients are synchronized only to authenticated NTP servers.
The key ID in the message from the peer device identifies the key used for authentication. The acl
ipv4-acl-number and acl ipv6-acl-number options are used to identify the peer device that can use
the key ID.
•
If the specified IPv4 or IPv6 ACL does not exist, any device can use the key ID for
authentication.
•
If the specified IPv4 or IPv6 ACL does not contain any rules, no device can use the key ID for
authentication.
To ensure a successful authentication, configure the same key ID, authentication algorithm, and key
on the time server and client.
After you configure an SNTP authentication key, use the sntp reliable authentication-keyid
command to set it as a trusted key. The key automatically changes to untrusted after you delete the

Table of Contents

Questions and Answers:

Question and Answer IconNeed help?

Do you have a question about the HPE FlexNetwork MSR3012 and is the answer not in the manual?

HPE FlexNetwork MSR3012 Specifications

General IconGeneral
BrandHPE
ModelFlexNetwork MSR3012
CategoryNetwork Router
LanguageEnglish

Related product manuals