H3C Technologies H3C S6300 Series Switches User Manual

18

•

Set the key as a trusted key on both client and server.

•

Associate the key with the NTP server on the client.

The key IDs and key values configured on the server and client must be the same. Otherwise, NTP
authentication fails.
To configure NTP authentication for a client:

Step Command

Remarks

1.

Enter system view.

system-view

N/A

2.

Enable NTP authentication.

ntp-service authentication enable

By default, NTP authentication is
disabled.

3.

Configure an NTP
authentication key.

ntp-service authentication-keyid
keyid authentication-mode md5

{ cipher | simple } value

By default, no NTP authentication
key is configured.

4.

Configure the key as a trusted

key.

ntp-service reliable
authentication-keyid keyid

By default, no authentication key is
configured as a trusted key.

5.

Associate the specified key

with an NTP server.

•

Associate the specified key with

an NTP server:
ntp-service unicast-server

{ server-name | ip-address }

authentication-keyid keyid

•

Associate the specified key with

an IPv6 NTP server:

ntp-service ipv6 unicast-server
{ server-name | ipv6-address }

authentication-keyid keyid

N/A

To configure NTP authentication for a server:

Step Command

Remarks

1.

Enter system view.

system-view

N/A

2.

Enable NTP authentication.

ntp-service authentication enable

By default, NTP authentication is
disabled.

3.

Configure an NTP
authentication key.

ntp-service authentication-keyid
keyid authentication-mode md5

{ cipher | simple } value

By default, no NTP authentication
key is configured.

4.

Configure the key as a trusted
key.

ntp-service reliable
authentication-keyid keyid

By default, no authentication key is
configured as a trusted key.

NTP authentication results differ when different configurations are performed on client and server. For
more information, see

Table 2

. (N/A in the table means that whether the configuration is performed does

not make any difference.)