3.3.3.5 Set 'ip rip authentication mode' to 'md5'

Warning! Audit Deprecated

This audit has been deprecated and will be removed in a future update.

View Next Audit Version

Information

Configure the Interface with the RIPv2 key chain.

Rationale:

This is part of the RIPv2 authentication setup

Solution

Configure the RIPv2 authentication mode on the necessary interface(s)


hostname(config)#interface <interface_name>
hostname(config-if)#ip rip authentication mode md5

Impact:

Organizations should plan and implement enterprise security policies that require rigorous authentication methods for routing protocols. Using the 'ip rip authentication mode md5' enforces these policies by restricting the type of authentication between network devices.

Default Value:

Not set

References:

http://www.cisco.com/en/US/docs/ios-xml/ios/interface/command/ir-i1.html#GUID-0D6BDFCD-3FBB-4D26-A274-C1221F8592DF

http://www.cisco.com/en/US/docs/ios-xml/ios/iproute_rip/command/irr-cr-rip.html#GUID-47536344-60DC-4D30-9E03-94FF336332C7

See Also

https://workbench.cisecurity.org/files/2585

Item Details

Category: SYSTEM AND COMMUNICATIONS PROTECTION

References: 800-53|SC-8(1), CSCv6|11

Plugin: Cisco

Control ID: 9b8c6b3ddb7745da6c55b7b0f5ecc8f6eb44f59d477ae5c7cbda77dfdfda223a