A Commands
This chapter describes the Cisco NX-OS Hot Standby Router Protocol (HSRP) commands that begin with A.
authentication (HSRP)
To configure authentication for the Hot Standby Router Protocol (HSRP), use the authentication command. To disable authentication, use the no form of this command.
authentication {string | md5 {key-chain key-chain | key-string {0 | 7} text [timeout seconds]} | text string}
no authentication {string | md5 {key-chain key-chain | key-string {0 | 7} text [timeout seconds]} | text string}
Syntax Description
Command Default
Disabled
Command Modes
HSRP configuration or HSRP template mode
Command History
|
|
---|---|
5.0(3)N1(1) |
This command was introduced. |
Usage Guidelines
Use the authentication text command to prevent misconfigured routers from participating in HSRP groups that they are not intended to participate in. The authentication string is sent unencrypted in all HSRP messages. The same authentication string must be configured on all routers in the same group to ensure interoperation. HSRP protocol packets that do not authenticate are ignored.
Examples
This example shows how to configure an authentication string for HSRP group 2:
switch# configure terminal
switch(config)# interface ethernet 0/1
switch(config-if)# no switchport
switch(config-if)# ip address 10.0.0.1 255.255.255.0
switch(config-if)# hsrp 2
switch(config-if-hsrp)# priority 110
switch(config-if-hsrp)# preempt
switch(config-if-hsrp)# authentication text sanjose
switch(config-if-hsrp)# ip 10.0.0.3
switch(config-if-hsrp)# end
switch(config-if-hsrp)#
Related Commands
|
|
---|---|
feature hsrp |
Enables HSRP and enters HSRP configuration mode. |
hsrp group |
Creates an HSRP group. |