3.3.2.1 Set 'authentication message-digest' for OSPF area

Information

Enable MD5 authentication for OSPF.

This is part of the OSPF authentication setup.

Solution

Configure the Message Digest option for OSPF.

hostname(config)#router ospf <<em>ospf_process-id</em>>
hostname(config-router)#area <<em>ospf_area-id</em>> authentication message-digest

Impact:

Organizations should plan and implement enterprise security policies that require rigorous authentication methods for routing protocols. Configuring the area 'authentication message-digest' for OSPF enforces these policies by restricting exchanges between network devices.

See Also

https://workbench.cisecurity.org/benchmarks/17130

Item Details

Category: IDENTIFICATION AND AUTHENTICATION

References: 800-53|IA-3

Plugin: Cisco

Control ID: 6086d34bce50210fcd9c8956a7ed91ab6caaf737d67dbdbde4c32eb43c9b6444