The documentation set for this product strives to use bias-free language. For the purposes of this documentation set, bias-free is defined as language that does not imply discrimination based on age, disability, gender, racial identity, ethnic identity, sexual orientation, socioeconomic status, and intersectionality. Exceptions may be present in the documentation due to language that is hardcoded in the user interfaces of the product software, language used based on RFP documentation, or language that is used by a referenced third-party product. Learn more about how Cisco is using Inclusive Language.
To configure an authentication keychain string for edge device authentication, use the authentication command. To return to the default setting, use the no form of this command.
authentication key-chain keychain-name
no authentication key-chain keychain-name
keychain-name |
Authentication keychain. The maximum length is from 1 to 16 characters. |
None
OTV ISI VPN configuration mode
Release |
Modification |
---|---|
5.0(3) |
This command was introduced. |
The authentication command is used to assign a password in the authentication of a hello protocol data unit. Only one authentication key chain is applied to an Intermediate System-to-Intermediate System (IS-IS) interface at one time. If you configure a second authentication command, the first is overridden. You can specify authentication for an entire instance of IS-IS instead of at the interface level by using the authentication command.
This command requires a Transport Services license.
This example shows how to configure an authentication keychain string for edge device authentication:
switch# configure terminal switch(config)# otv-isis default switch(config-router)# vpn name switch(config-router-vrf)# authentication key-chain OTVKeys switch(config-router-vrf)#
Command |
Description |
---|---|
show otv isis |
Displays the IS-IS status and configuration. |
To enable an authentication check of hello messages between Overlay Transport Virtualization (OTV) edge devices, use the authentication-check command. To return to the default setting, use the no form of this command.
authentication-check
no authentication-check
This command has no arguments or keywords.
Enabled
OTV ISIS VPN configuration
Release |
Modification |
---|---|
5.0(3) |
This command was introduced. |
The authentication-check command controls authentication checking on incoming hello protocol data units (PDUs).
This command requires a Transport Services license.
This example shows how to enable authentication of hello messages between OTV edge devices:
switch# configure terminal switch(config)# otv-isis default switch(config-router)# vpn name switch(config-router-vrf)# authentication-check switch(config-router-vrf)#
Command |
Description |
---|---|
show otv |
Displays information about OTV. |
To configure the Overlay Transport Virtualization (OTV) authentication type, use the authentication-type command. To return to the default setting, use the no form of this command.
authentication-type { cleartext | md5 }
no authentication-type { cleartext | md5 }
cleartext |
Specifies the cleartext authentication method. |
md5 |
Specifies Message Digest (MD5) authentication. |
Enabled
OTV ISIS VPN configuration
Release |
Modification |
---|---|
5.0(3) |
This command was introduced. |
Use the authentication-type command to configure the authentication type for hello protocol data units (PDUs) on an interface.
This command requires a Transport Services license.
This example shows how to specify cleartext authentication:
switch# configure terminal switch(config)# otv-isis default switch(config-router)# vpn name switch(config-router-vrf)# authentication-type cleartext switch(config-router-vrf)#
This example shows how to specify Message Digest (MD5) authentication:
switch# configure terminal switch(config)# otv-isis default switch(config-router)# vpn name switch(config-router-vrf)# authentication-type md5 switch(config-router-vrf)#
Command |
Description |
---|---|
show otv |
Displays information about OTV. |