miércoles, 29 de enero de 2014

NTP authentication not enabled


ExceptionNTP authentication not enabled
CategoryIP Applications;Security
OS TypeIOS
Risklow
Description"NTP is an important tool for troubleshooting and event correlation. Any network device that is accepting NTP should be protected by a firewall or access lists, or have the services disabled to protect against Denial of Service attacks or attempts at unauthorized usage. NTP is disabled by default."
Reference URLNetwork Time Protocol Best Practices White Paper
Corrective Action "ntp authentication-key 777 md5 cisco-ntp
ntp authenticate
ntp trusted-key 777
ntp update-calendar
ntp server 10.100.0.1 key 777 prefer"
Caveat "With NTP authentication enabled, unauthenticated packets are still accepted, which is the lowest validity. To prevent a device from accepting NTP updates from unauthorized servers, use an access list."


Más "Mejoras de practicas de configuraciones Cisco" AQUÍ



Sígueme también en: