| Exception | NTP authentication not enabled |
|---|---|
| Category | IP Applications;Security |
| OS Type | IOS |
| Risk | low |
| Description | "NTP is an important tool for troubleshooting and event correlation. Any network device that is accepting NTP should be protected by a firewall or access lists, or have the services disabled to protect against Denial of Service attacks or attempts at unauthorized usage. NTP is disabled by default." |
| Reference URL | Network Time Protocol Best Practices White Paper |
| Corrective Action | "ntp authentication-key 777 md5 cisco-ntp ntp authenticate ntp trusted-key 777 ntp update-calendar ntp server 10.100.0.1 key 777 prefer" |
| Caveat | "With NTP authentication enabled, unauthenticated packets are still accepted, which is the lowest validity. To prevent a device from accepting NTP updates from unauthorized servers, use an access list." |
Sígueme también en:
No hay comentarios:
Publicar un comentario