1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
|
// Authentication commands - included twice
The following declarations control MAC authentication:
[[controlkey]]+controlkey+ _key_::
Specifies the key identifier to use with the
{ntpqman} utility, which uses the standard protocol defined in
RFC 5905. The _key_ argument is the key identifier for a trusted key,
where the value can be in the range 1 to 65,535, inclusive.
[[keys]]+keys+ _keyfile_::
Specifies the complete path and location of the key file
containing the keys and key identifiers used by {ntpdman},
and {ntpqman} when operating with symmetric-key cryptography.
This is the same operation as the +-k+ command line option.
[[trustedkey]]+trustedkey+ _key..._ ::
Specifies the key identifiers which are trusted for the purposes of
authenticating peers with symmetric key cryptography, as well as keys
used by the {ntpqman} program.
Multiple keys on the same line should be separated by spaces.
Key ranges can be specified as (first ... last). The spaces around
the ... are necessary. Multiple +trustedkey+ lines are supported
and trusted keys can also be specified on the command line.
The MAC authentication procedures require that both the local and remote
servers share the same key and key identifier for this purpose,
although different keys can be used with different servers.
The _key_ arguments are 32-bit unsigned integers with values from 1 to
65,535.
// end
|
