Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2605
Views
10
Helpful
3
Replies

OSPF Area and Interface Authentication

Go to solution
UncleJP
Level 1
Level 1

‎07-12-2020 11:38 AM

What is the point of using area authentication when the authentication configuration on the interface overrides any area authentication that is configured?

 

Ex. if message-digest authentication is configured for the area, but null authentication is configured on the interface. 

 

Best regards,

Jason

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame

‎07-12-2020 12:08 PM

The difference between the two is that for interface authentication you only enable authentication for one link rather than for the whole area. Additionally, if you wanted to only do one type of authentication for certain links and then use a different type (plain text or MD5) then you could use interface authentication.

Configuring Area authentication will enable authentication for the entire area. This is to save some configuration.

Configured at the interface level will override the area configuration command.

 

configuration example :

 

https://community.cisco.com/t5/networking-documents/ospf-authentication/ta-p/3131640

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

View solution in original post

3 Replies 3

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame

‎07-12-2020 12:08 PM

The difference between the two is that for interface authentication you only enable authentication for one link rather than for the whole area. Additionally, if you wanted to only do one type of authentication for certain links and then use a different type (plain text or MD5) then you could use interface authentication.

Configuring Area authentication will enable authentication for the entire area. This is to save some configuration.

Configured at the interface level will override the area configuration command.

 

configuration example :

 

https://community.cisco.com/t5/networking-documents/ospf-authentication/ta-p/3131640

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

Go to solution
Abderahman-K
Level 1
Level 1
In response to balaji.bandi

‎07-28-2022 08:58 AM

@balaji.bandi, sorry to bring an old post back to life. Is area authentication command required on both switches to form an adjacency? 
Thanks!

0 Helpful

Go to solution
Joseph W. Doherty
Hall of Fame
Hall of Fame
In response to Abderahman-K

‎07-28-2022 03:24 PM

I recall (?) area authentication is an area wide attribute that all devices using that area need to agree on.  (Much like same area routers need to agree on the area number.)

When enabled, same area authentication routers, sharing a link, need to use the same password, but the password can be null.

Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card