ADTRAN 1000R Series Network Card User Manual

Open as PDF

of 1373

Command Reference Guide Demand Interface Configuration Command Set

Several example scenarios are given below for clarity.

Configuring PAP Example 1: Only the local router requires the peer to authenticate itself.

On the local router (hostname Local):

Local(config-demand 1)#ppp authentication pap

Local(config-demand 1)#username farend password same

On the peer (hostname Peer):

Peer(config-demand 1)#ppp pap sent-username farend password same

The first line of the configuration sets the authentication mode as PAP. This means the peer is required to

authenticate itself to the local router via PAP. The second line is the username and password expected to

be sent from the peer. On the peer, the ppp pap sent-username command is used to specify the

appropriate matching username and password.

Configuring PAP Example 2: Both routers require the peer to authenticate itself.

On the local router (hostname Local):

Local(config-demand 1)#ppp authentication pap

Local(config-demand 1)#username farend password far

Local(config-demand 1)#ppp pap sent-username nearend password near

On the peer (hostname Peer):

Peer(config-demand 1)#ppp authentication pap

Peer(config-demand 1)#username nearend password near

Peer(config-demand 1)#ppp pap sent-username farend password far

Now both routers send the authentication request, verify that the username and password sent match what

is expected in the database, and send an authentication acknowledge.

Defining CHAP

The Challenge-Handshake Authentication Protocol (CHAP) is a three-way authentication protocol

composed of a challenge response and success or failure. The MD5 protocol is used to protect usernames

and passwords in the response.

First, the local router (requiring its peer to be authenticated) sends a "challenge" containing only its own

unencrypted username to the peer. The peer then looks up the username in the username database within

the PPP interface, and if found takes the corresponding password and its own hostname and sends a

“response” back to the local router. This data is encrypted. The local router verifies that the username and

password are in its own username database within the PPP interface, and if so sends a "success" back to

the peer.

The PPP username and password database is separate and distinct from the global

username password database. For PAP and CHAP, use the database under the PPP

interface configuration.

previous next

Top Automotive Device Types

Top Automotive Brands

Top Baby Care Device Types

Top Baby Care Brands

Top Car Audio & Video Device Types

Top Car Audio & Video Brands

Top Cellphone Device Types

Top Cellphone Brands

Top Communications Device Types

Top Communications Brands

Top Computer Device Types

Top Computer Brands

Top Fitness Device Types

Top Fitness Brands

Top Home Audio Device Types

Top Home Audio Brands

Top Household Appliance Device Types

Top Household Appliance Brands

Top Kitchen Appliance Device Types

Top Kitchen Appliance Brands

Top Laundry Appliance Device Types

Top Laundry Appliance Brands

Top Lawn & Garden Device Types

Top Lawn & Garden Brands

Top Marine Equipment Device Types

Top Marine Equipment Brands

Top Musical Instrument Device Types

Top Musical Instrument Brands

Top Outdoor Cooking Device Types

Top Outdoor Cooking Brands

Top Personal Care Device Types

Top Personal Care Brands

Top Photography Device Types

Top Photography Brands

Top Portable Media Device Types

Top Portable Media Brands

Top Power Tools Device Types

Top Power Tools Brands

Top TV and Video Device Types

Top TV and Video Brands

Top Videogame Device Types

Top Videogame Brands

ADTRAN 1000R Series Network Card User Manual