Cisco WS-C4003 Software Guide - Page 478
Configuring Authentication in Client Mode
View all Cisco WS-C4003 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 478 highlights
Configuring NTP Chapter 35 Configuring NTP This example shows how to configure the NTP server address, enable NTP client mode on the switch, and verify the configuration: Console> (enable) set ntp server 172.20.52.65 NTP server 172.20.52.65 added. Console> (enable) set ntp client enable NTP Client mode enabled Console> (enable) show ntp Current time: Tue Jun 23 1998, 20:29:25 Timezone: '', offset from UTC is 0 hours Summertime: '', disabled Last NTP update: Tue Jun 23 1998, 20:29:07 Broadcast client mode: disabled Broadcast delay: 3000 microseconds Client mode: enabled NTP-Server 172.16.52.65 Console> (enable) Configuring Authentication in Client Mode Authentication can enhance the security of a system running NTP. When you enable the authentication feature, the client switch will send time-of-day requests only to trusted NTP servers. The authentication feature is documented in RFC 1305. You can configure up to ten authentication keys per client. Each authentication key is actually a pair of two keys: • A public key number-A 32-bit integer that can range from 1 to 4294967295 • A secret key string-An arbitrary string of 32 characters, including all printable characters and spaces To authenticate the message, the client authentication key must match the key on the server. Therefore, the authentication key must be securely distributed in advance (that is, the client administrator must get the key pair from the server administrator and configure it on the client). To enable authentication, perform this task in privileged mode: Step 1 Step 2 Step 3 Step 4 Step 5 Task Command Define an authentication key pair for NTP and specify whether the key will be trusted or untrusted. set ntp key public_key [trusted | untrusted] md5 secret_key Specify the IP address of the NTP server and the set ntp server ip_addr [key public_key] public key. Enable NTP client mode. set ntp client enable Enable NTP authentication. set ntp authentication enable Verify the NTP configuration. show ntp [noalias] 35-4 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02