|
Home::Personal Tech
Cisco Certification: Introduction To ISDN, Part IV
Author : Chris Bryant
In part III of this ISDN primer, we learned that PPP has two main methods of authentication that Cisco certification candidates need to know how to configure: PAP and CHAP. PAP has very few advantages over CHAP. PAP passwords are carried over the line in clear-text, which in today's world is a very bad idea. PAP configuration also requires additional configuration with the "ppp pap sent-username" command, so anyone who can see your running configuration can also see the PAP password. The only advantage PAP has over CHAP is a slim one. With PAP, a different password can be used by the each of the routers involved in the authentication. CHAP requires that the password be the same. Why? We'll see as we examine CHAP authentication. The First Step to Configuring CHAP CHAP requires you to configure a username / password combination for any remote device that will be involved in authentication. (We're assuming that the routers have already been configured with their names via the global hostname command.) Both routers will use the password CISCO. R1: username R2 password CISCO int bri0 encapsulation ppp ppp authentication chap R2: username R1 password CISCO int bri0 encapsulation ppp ppp authentication chap Why CHAP Authentication Requires The Same Password On Both Routers Remember how PAP sends the password over the line in clear-text? CHAP does not actually send the password over the line at all. Instead, CHAP runs a hash algorithm using the password and a random number. It is the result of this hash that is passed over the link. The remote router receives the hash result, and runs the exact same algorithm. If the result is the same, the authentication attempt will be successful. If the result is different, the authentication will fail. For this reason, the passwords must be the same. Debug The Connection If Authentication Fails Since two passwords are involved, the chances of one of the passwords being mistyped doubles. If you configure CHAP and the link dials but drops almost immediately, there's an authentication problem. Run debug ppp negotiation and attempt to dial the line again. The output of this particular debug will show you where the problem is. Chris Bryant, CCIE #12933, is the owner of The Bryant Advantage (http://www.thebryantadvantage.com), home of free http://www.thebryantadvantage.com/">CCNA and CCNP tutorials, The Ultimate CCNA Study Package, and Ultimate CCNP Study Packages. Video courses and training, binary and subnetting help, and corporate training are also available. Pass the http://www.thebryantadvantage.com/UltimateCCNAStudyPackage.html">CCNA exam with Chris Bryant, CCIE #12933! For a copy of his FREE "How To Pass The CCNA" or "How To Pass The CCNP" ebook, write to chris@thebryantadvantage.com! Spam emails More free articles Related articles
|
More related feeds |
Cisco Certification Introduction To ISDN, Part IV
In conception threesome of this ISDN primer, we scholarly that UPPP has digit important methods of marker that Cisco authorisation candidates requirement to undergo how to configure: PAP and CHAP. PAP has rattling some advantages over ...Cisco Certification: Introduction To ISDN, Part IV
In the third part of this first ISDN, we learned that PPP has two main methods of authentication that & 39; Cisco certification candidates need to know how to configure: CHAP. PAP PAP and has very little & 39; advantages over CHAP. ... Cisco Certification Introduction To ISDN, Part IV
In part III of this ISDN primer, we learned that PPP has two main methods of authentication that Cisco certification candidates need to know how to configure: PAP and CHAP. PAP has very few advantages over CHAP. ... Cisco Certification: Configuring CHAP on ISDN
Introduction To ISDN, Part IV: Configuring PPP CHAP Authentication In part III of this ISDN tutorial, we learned that PPP has two main methods of authentication that Cisco certification candidates need to know how to configure: PAP and ... Cisco Certification: Introduction To ISDN, Part V
BR0:1 CHAP: O SUCCESS id 1 len 4 < The challenge was successfully met by R1, and a success message is sent. > By mastering these simple ISDN show and debug commands, you increase your chances of passing the CCNA and CCNP exams greatly, ... Cisco Others Certification Internetworking Expert 642-973 Exams
C:In contrast to point products, the Cisco SDN is a system of defense that leverages the ubiquitous sensing and control capabilities of the network. Each part communicates with the other to strengthen protection across the entire ... Wireshark 1.0.1
It can also read traces made from Lucent/Ascend WAN routers and Toshiba ISDN routers, as well as the text output from VMS’s TCPIPtrace utility and the DBS Etherwatch utility for VMS. Any of these files can be compressed with gzip and ... Cisco Certification: Introduction To ISDN, Part V
Chris Bryant, CCIE (TM) #12933, has been active in the Cisco certification community for years. He has written several books that have helped CCNA candidates around the world achieve the coveted CCNA certification, including several ... AvailableConsultants We Have Excellent Active Direcotry Engineer ...
directory implementation Supporting and managing Trend Information consoles deployed as a part of antivirus management. Deployed Vmware ESX and Virtual Center Server and designed Vmware farm for implementing the project (Core team of 4) ... The market in UK offers numerous options
ageanalog problems voip cisco ageanalyse voip agearchitecture agevoip agegratuit voip agecall basic voip termination agearchitecture voip voip termination agevoip buster voip solution agesolution architecture london voip voip ...
|
|
|
