You are here: Administration & Maintenance Manual > Appliance Administration > NTP and Drift Correction > Using Secure NTP

Using Secure NTP

The Luna SA appliance supports simple, non-secure NTP (Network Time Protocol), as well as two types of secure or trusted NTP :

Identity Schemes are methods for proving the identity of remote systems, in this case NTP servers.

If you have previously been using ordinary, simple (not secured) NTP we recommend that you begin using the secure version. If you have older keys or certificates from secure/trusted NTP servers, we recommend that you renew with more current authentication that does not use MD5.

NTP in general is described in the Concepts section of this Help at About NTP.

The available configuration commands are described in the Reference section of this Help, under "Lunash Appliance Commands > sysconf Commands > sysconf ntp Commands".

Using Autokey Authentication

  1. Generate Autokey Keys:
    lunash:>sysconf ntp autokeyAuth generate -password mypa$$word
  2. Add the server using “-autokey” option:
    lunash:>sysconf ntp addserver myTrustedNTPServer –autokey
  3. Run the command
     lunash:>sysconf ntp status
    to check the status

Using Symmetric Key Authentication

  1. Obtain the symmetric keys from your trusted server and add them using the command:
    lunash:>sysconf ntp symmetricAuth key add
  2. Add the key id from step 1 to the list of trusted keys using the command:
    lunash:>sysconf ntp symmetricAuth trustedKeys add
  3. Add the server using “-key keyID” option:
    lunash:>sysconf ntp addserver –key keyID
  4. Run the command
    lunash:>sysconf ntp status
    to check the status

 

 

See Also