This section describes how to ensure the security of NTP sessions through NTP security mechanisms.
NTP supports two security mechanisms: access authority and NTP authentication.
Access authority is a type of simple security method provided by the NetEngine 8000 F to protect local NTP services.
NTP authentication is required in some networks with high security demands.
The configuration of NTP authentication involves configuring NTP authentication on both, the client and the server.
During the configuration of NTP authentication, pay attention to the following rules:
Configure NTP authentication on both the client and the server. Otherwise, the authentication does not take effect.
If NTP authentication is enabled, a reliable key needs to be configured at the client side.
The authentication key configured on the server and that on the client must be consistent.
In NTP peer mode, the symmetric active end equals the client, and the symmetric passive end equals the server.
Before configuring NTP security mechanisms, complete the following tasks:
Configure the link layer protocol for the interface.
Configure the link layer protocol and routing protocol to make the server and client reachable.
Configure ACL rules if the access authority is configured.