Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
275
Views
0
Helpful
3
Replies

Cisco 3845 and SyncServer S350 NTP -- Procedure for changing MD5 password

mestrickland325
Level 1
Level 1

‎07-09-2017 09:48 AM - edited ‎03-19-2019 12:36 PM

I'm searching for a procedure to change the MD5 password on the 3845 that securely communicates with the SyncServer S350 NTP.  Your input is appreciated...Mike

Labels:
0 Helpful
3 Replies 3

GRANT3779
Spotlight
Spotlight

‎07-09-2017 11:17 AM

Hi Mike,

On the 3825 can you provide output of the following command

show run | sec ntp

0 Helpful

mestrickland325
Level 1
Level 1
In response to GRANT3779

‎07-10-2017 07:10 AM

Grant,

Cannot provide output due to special circumstances.  Is it possible there is a best practices document or procedure for configuring the 3845/NTP using MD5 hash.  As I understand, the sequence is important when changing passwords on both devices because this can lead to locking out or disabling the equipment.

Thanks,

Mike

0 Helpful

GRANT3779
Spotlight
Spotlight
In response to mestrickland325

‎07-10-2017 07:33 AM

Not familiar withe the SyncServer S350 but for NTP config on IOS Devices see below 

(A lot easier reading that some of the Cisco Official documentation)


Paul Stewarts blog, who is a CSC regular.

http://www.packetu.com/2008/12/28/ntp-authentication-ciscos-implementation/

and.

http://www.cisco.com/c/en/us/td/docs/ios-xml/ios/bsm/command/bsm-cr-book/bsm-cr-n1.html#wp2286071162

There is really not much to it on the Cisco end. Just have to ensure the SyncServer matches up I would assume.

I have never heard of being locked out a Cisco device if the NTP for it was out of sync. If your whole AD environments time was drfiting then there may be a ripple down if using TACACs / ACS integrated with AD or similar.

Maybe someone else can advise otherwise though.

0 Helpful
Customers Also Viewed These Support Documents