Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

TechLibrary
Navigation  Back up to About Overview 
ContentIndex
  
[+] Expand All
[-] Collapse All

Symbols  A  B  C  D  E  F  G  H  I  J  L  M  N  O  P  R  S  T  U  V  W

 

Symbols

! regular expression operator
$ regular expression operator
( ) regular expression operator
* regular expression operator
+ regular expression operator
. regular expression operator
\ regular expression operator
^ regular expression operator
 

A

access privilege levels    
permission options
user accounts
accounting    
applications
description
TACACS+, configuring    
SRC CLI
admin permission
admin-control permission
all permission
announcements at system login
APIs (application programming interfaces)    
CORBA plug-in SPI
CORBA remote API
description
SAE core API    12
application programming interfaces.     See APIs    
architecture    
SRC software
authentication    1,  See also user accounts    
configuration example
multiple methods
RADIUS    
attributes
configuring
configuring with SRC CLI
example
shared user accounts    12
TACACS+    
attributes
TACACS+, configuring
TACACS+, configuring with C-Web interface
TACACS+, configuring with SRC CLI
template accounts    
configuring local user with SRC CLI
configuring remote users with SRC CLI SRC
named
overview
authentication order    
configuring with C-Web interface
configuring with SRC CLI    12
overview    12
removing authentication method
removing authentication method with SRC CLI
 

B

backup directory
base-dn, configuring
BEEP TLS connections
boot server, NTP
broadcast    
synchronizing NTP
 

C

C Series Controller    
serial port
C Series Controllers    
configuration prerequisites
deployment considerations
description
initial configuration
interfaces
recovering or installing software
recovering software
software packages
software snapshot
SRC components
static routes
upgrading software    12
upgrading software when running redundant SAEs
C-Web interface    
committing a configuration
configuration options
configuring    
HTTP access    12
HTTPS access    12
logging properties
copying an object
deleting an object
editing level
elements
getting Help
icons
layout
loading configuration values
logging out
moving an object
navigating
overview    12
password, changing
Policies, Services, and Subscribers    
password
starting
renaming an object
reverting a configuration
starting
updating configuration data
username, changing
C2000 Controller
C3000 Controller
C4000 Controller
C5000 Controller
clear permission
cli
client mode, NTP
commands    
access to
configuration statements    
access to
configure permission
control permission
conventions    
notice icons
text
customer support    1
contacting JTAC
cweb-password
 

D

date on system
deployment scenarios    
C Series Controllers    12
DES (directory eventing system)    
overview
properties
differentiated QoS
digital certificates.     See security    
directory    
client
configuring    
redundancy
description
failover
LDAP version 3 compatibility
managing problems
primary
RADIUS
retrieving changed data
secondary (backup)
directory connection properties
directory eventing system
directory server
documentation    
comments on
draft RFCs
dynamic webpages
 

E

enterprise service portals description
Ethernet redundancy    1
configuring    1
SRC CLI    12
events    
TACACS+, specifying    
SRC CLI    12
 

F

failover directories
field permission
firewall permission
firewall ports for SRC-related components
firewall-control permission
 

G

Gigabit Ethernet interfaces, configuring IPv4
Gigabit Ethernet interfaces, configuring IPv6
GRE tunnel interfaces
group interfaces, configuring    1
SRC CLI
 

H

HTTPS connections
 

I

idle timeout values, login classes
interface-control permission
interfaces    
C Series Controllers
disabling
Ethernet redundancy
Gigabit Ethernet, configuring IPv4
Gigabit Ethernet, configuring IPv6
group, configuring
trusted, configuring
tunnel
tunnel, configuring
IP addresses    
virtual, configuring
IP service, life-cycle process
IP-over-IP tunnel interfaces
 

J

Java Naming and Directory Interface.     See JNDI    
java-heap-size, configuring
JNDI (Java Naming and Directory Interface)
Juniper Networks database    
adding Juniper Networks database to community    
SRC CLI
changing modes    
SRC CLI
community mode    
configuring hostname
community mode configuration    
SRC CLI
configuration example
configuration statements
configuring    
size limit
data recovery
high availability
loading sample data
neighbors    12
overview    12
redundancy
roles    
changing secondary to primary, SRC CLI
overview    12
standalone mode    
SRC CLI
verifying configuration    
SRC CLI
Juniper-Allow-Commands attribute (RADIUS)
Juniper-Allow-Configuration attribute (RADIUS)
Juniper-Deny-Commands attribute (RADIUS)
Juniper-Deny-Configuration attribute (RADIUS)
Juniper-Local-User-Name attribute (RADIUS)
 

L

LDAP (Lightweight Directory Access Protocol).     See directory; directory server    
LDAP directory.     See directory    
leases for licenses.     See license server    
license    
obtaining
server license    
configuration statements
description
installing, C Series Controllers
location
overview
types
license manager    
configuration statements
configuring    
SRC CLI
license server    
alarms overview
alarms, configuring
errors
general properties, configuring
lease renewal
license allocation
license release
license requests
license switching
location, configuring
ORB,
repository, configuring
SAE failover
license usage    
monitoring    
SRC CLI
reports    12
creating, SRC CLI
sending    
SRC CLI
Lightweight Directory Access Protocol.     See LDAP    
load balancing    
NIC
local password authentication
local properties    
basic properties, configuring
configuration    
SRC CLI    1234
verifying
configuration statements
directory connection properties, configuring
directory location of SRC data, configuring
logging,  See also system log server    
login announcements, system
login classes    
configuration
configuration examples
configuration prerequisites    
SRC CLI
configuration statements
configuration verification
default classes
idle timeout values
options
overview    
SRC CLI
predefined
privilege level options    
SRC CLI
privilege levels    
commands
configuration statements
 

M

maintenance permission
manuals    
comments on
messages    
broadcast messages, NTP
multicast messages, NTP
severity levels for logging
MII monitor    
configuring    
SRC CLI
Monitoring Agent    
application
multicast    
NTP messages
 

N

NAS ID, configuring for SAE    
SRC CLI
network    
permission
network information collector.     See NIC    
NIC (network information collector)    
description
load balancing
overview
resolution processes
notice icons
NTP (Network Time Protocol)    
authentication    
configuration
configuration statements
authentication keys
boot server
client mode
configuration
configuration statements
listening    
broadcast messages
multicast messages
modes    12
overview
symmetric active mode
NTP,    
disable monitoring
 

O

on-demand services    12
open interfaces
operator login class
operators, regular expression
OSS integration
 

P

passwords    
RADIUS    
SRC CLI
shared user
shared user accounts
user accounts
permissions    
SRC CLI
policies    
management
Policies, Services, and Subscribers CLI.     See SRC CLI    
Policies, Services, and Subscribers tasks.     See C-Web interface    
policy management
ports    
RADIUS server
SRC-related components
predefined login classes
primary directory
privilege levels    1
SRC CLI
product features    12
 

R

RADIUS    
address for SAE    
SRC CLI
description
OSS integration
server compliant RFCs
subscriber management
RADIUS authentication.     See authentication    
RADIUS authorization.     See authentication    
read-only login class
redundancy    
directory
references    
draft RFCs
non-RFC software standards
RFCs
URLs, third-party
regular expressions    
operators
usage guidelines
request license import file-name command
reset permission
residential portal    
description
PDAs
resolving hostnames    
C-Web interface
retrieving directory changes
RFCs    123
root account    1
recovering
router running Junos OS    
scalability
router running JunosE Software    
scalability with SRC software
routing permission
routing-control permission
 

S

SAE (service activation engine)    
configuring groups    
deleting default configurations
SRC CLI    12
description    12
initial properties, overview    
SRC CLI
starting    
SRC CLI
stopping    
SRC CLI
verifying status
SAE (service activation engine), configuring initial properties    
SRC CLI
SAE (service activation engine), configuring NAS ID    
SRC CLI
SAE (service activation engine), configuring RADIUS address    
SRC CLI
sample data    
loading    
SRC CLI
overview
secondary directory
secret permission
secret-control permission
security    
digital certificates    1
clearing certificates    12
clearing requests
prerequisites
requesting certificates    12
requesting certificates through SCEP
viewing certificates
security permission
security-control permission
server license.     See license    
service activation engine.     See SAE    
service permission
service-control permission
services    
on demand
shared user accounts
shell permission
SNMP agent    
access control, configuring on C Series Controllers    
community strings    12
named views
SNMP groups
VACM
configuration statements    12
configuring    
C Series Controllers    12
SRC CLI    12
description
directory connection parameters, configuring    
SRC CLI
Java Runtime Environment, configuring    
SRC CLI
local properties, configuring    
SRC CLI
logging, configuring    
SRC CLI
monitoring    
SRC CLI
named views, defining    
C Series Controllers
notification targets, configuring    
C Series Controllers
SRC CLI
starting    
SRC CLI
stopping    
SRC CLI
system information, configuring    
SRC CLI
trap history, configuring    
SRC CLI
SNMP Agent    
master agent SNMP versions
snmp control permission
snmp permission
SNMP traps    
notification targets, configuring    
C Series Controllers
snmp-named-views-cli
snmp-security-names-cli
snmp-statements
software standards    
draft RFCs
non-RFC standards
RFCs
SRC ACP (SRC Admission Control Plug-In)    
overview
SRC CLI    1
directory connections    
configuration statements
configuring
verifying configuration
overview    
external directory server
Policies, Services, and Subscribers CLI    
password
starting
starting    
C Series platform
SRC components    
description
diagram
high availability
SRC software    
configuration prerequisites
configuring    
C Series Controllers    12
creating, virtualized instance    1
iso image
qcow2 image
description
features and benefits    12
financial advantages
OSS integration
recovering    
C Series Controller
services    
description
snapshot on C Series Controller
upgrading    
C Series Controller    123
USB Storage Device    
C Series Controller
virtualization
virtualization, requirement
SSH (secure shell)    
connection to remote host
standards    1
draft RFCs
non-RFC software standards
RFCs
static host mapping    
configuring    
SRC CLI
overview
static routes, configuring
Steel-Belted Radius/SPE server    12
subscriber    
management, description
subscriber permission
subscriber-control permission
superuser login class
support, technical     See technical support    
symmetric active mode, NTP
system authentication.     See authentication    
system log server    
configuration prerequisites
configuration statements
message groups
message severity levels
messages    
file locations
messages, file    
SRC CLI
messages, server    
SRC CLI
messages, user notification    
SRC CLI
overview
system login
system permission
system-control permission
 

T

TACACS+ authentication.     See authentication    
tariff models
technical support    
contacting JTAC
Telnet connection to remote host
template authentication accounts
text conventions defined
third-party URLs
tunnel interfaces
tunnel interfaces, configuring
 

U

UIDs
unauthorized login class
unresponsive directories
usage data
user accounts    1,  See also login classes    
authentication    
configuring passwords
configuring SSH authentication
root password    12
authentication method and password
configuration
configuration verification    12
example
overview    123
SRC CLI
shared
user notification messages    
SRC CLI
 

V

view permission
view-configuration permission
virtual IP addresses, configuring
 

W

Web application server    
application deployment    12
channel stack    
configuring
configuration statements    
SRC CLI
configuring the Web application server    
SRC CLI
installing Web applications inside
local properties    
configuring
multicast-address    
configuring
node-id    
configuring
overview
removing Web applications from
restarting
shared cluster name    
configuring
shared cluster nodes    
configuring
shared cluster properties    
configuring
starting
stopping
viewing cluster history    
SRC CLI
viewing cluster status    
SRC CLI
viewing statistics    
C-Web interface
SRC CLI
Web Services Gateway    
description

Download This Guide

Related Documentation

Configuring NTP Authentication on a C Series Controller (SRC CLI)

You can authenticate time synchronization to ensure that a C Series Controller obtains its time services only from known sources. By default, network time synchronization is unauthenticated; the system synchronizes to whatever system appears to have the most accurate time. We highly recommend that you configure authentication of network time services.

Use the following configuration mode statements to configure authentication for NTP on a C Series Controller:

system ntp {trusted-key [trusted-key...]; }
system ntp authentication-key key-number {value value;}
system ntp broadcast address {key key ; }
system ntp peer address {key key; }
system ntp server address {key key; }

To configure NTP authentication:

  1. Specify authentication for other time servers.

    Only time servers transmitting network time packets that contain one of the specified key numbers and whose key matches the value configured for that key number are eligible for synchronization. Other systems can synchronize with the local system without being authenticated.

    [edit system ntp]user@host# set trusted-key [trusted-key...]

    where trusted-key is a value in the range 1–2147483647.

    For example:

    [edit system ntp]user@host# set trusted-key 1
  2. Depending on the mode configured for NTP, specify a key value at the [edit system ntp server], [edit system ntp peer], or [edit system ntp broadcast] hierarchy level. For example:
    [edit system ntp server address ]user@host# set key key

    For example:

    [edit system ntp server 192.0.2.30]user@host# set key key1

    The system transmits the specified authentication key when transmitting packets. The key is necessary if the remote system has authentication enabled so that it can synchronize with the local system.

  3. Define the authentication keys by assigning a number to the key and configuring its value.
    [edit system ntp]user@host# edit authentication-key key-number [edit system ntp authentication-key key-number ]user@host# set value value

    The key-number is the key number for the key. The key number must match on all systems using that particular key for authentication.

    For example:

    [edit system ntp]user@host# edit authentication-key 1 [edit system ntp authentication-key 1]user@host# set value X7VY4ZE

     

  4. Verify the configuration.
    [edit system ntp]
user@host# show
trusted-key 1;
server 192.0.2.30 key 1;
authentication-key 1 {
 value ********;
}
Related Documentation
Modified: 2015-06-22

						















    

        
        
    












    

        Previous Page
        Next Page