Configuration Procedure; Configuring Ntp Authentication; Configuration Prerequisites - HP A3100-8 v2 EI Configuration Manual

A3100 v2 switch series

Hide thumbs Also See for A3100-8 v2 EI:

Installation manual (58 pages)

Configuration manual (193 pages)

Command reference manual (49 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

Table of Contents

Configuration procedure

Follow these steps to configure the NTP service access-control right to the local device:

To do...

Enter system view

Configure the NTP service

access-control right for a peer

device to access the local device

NOTE:

The access-control right mechanism provides only a minimum degree of security protection for the system

running NTP. A more secure method is identity authentication.

Configuring NTP authentication

NTP authentication should be enabled for a system running NTP in a network with a high security

demand. It enhances the network security by means of client-server key authentication, which prohibits a

client from synchronizing with a device that has failed authentication.

Configuration prerequisites

NTP authentication requires configuration on the client and on the server.

The following principles apply:

For all synchronization modes, when you enable the NTP authentication feature, configure an

•

authentication key and specify it as a trusted key. The ntp-service authentication enable command

must work together with the ntp-service authentication-keyid command and the ntp-service reliable

authentication-keyid command. Otherwise, the NTP authentication function cannot be normally

enabled.

•

For the client/server mode or symmetric mode, associate the specified authentication key on the

client (symmetric-active peer if in the symmetric peer mode) with the NTP server (symmetric-passive

peer if in the symmetric peer mode). Otherwise, the NTP authentication feature cannot be normally

enabled.

For the broadcast server mode or multicast server mode, associate the specified authentication key

•

on the broadcast server or multicast server with the NTP server. Otherwise, the NTP authentication

feature cannot be normally enabled.

For the client/server mode, if the NTP authentication feature has not been enabled for the client, the

•

client can synchronize with the server regardless of whether the NTP authentication feature has

been enabled for the server. If the NTP authentication is enabled on a client, the client can be

synchronized only to a server that can provide a trusted authentication key.

For all synchronization modes, the server side and the client side must be consistently configured.

•

Configuration procedure

Configuring NTP authentication for a client

Follow these steps to configure NTP authentication for a client:

Use the command...

system-view

ntp-service access { peer | query |

server | synchronization }

acl-number

Remarks

—

Required

peer by default

Table of Contents

Show Quick Links

Hide quick links:

Table of Contents

This manual is also suitable for:

A3100-16 v2 si A3100-24 v2 si A3100-8 v2 si A3100-16 v2 ei A3100-24 v2 ei A3100-8-poe v2 ei ... Show all

Configuration Procedure; Configuring Ntp Authentication; Configuration Prerequisites - HP A3100-8 v2 EI Configuration Manual

Configuration procedure

Configuring NTP authentication

Configuration prerequisites

Hide quick links:

Related Manuals for HP A3100-8 v2 EI

Related Content for HP A3100-8 v2 EI

This manual is also suitable for:

Table of Contents