Network Automation Engineer: Roger Perkin CCIE 50038

CCIE, Wireless, F5, Ansible, AWS, Cloud and data centre to Network Automation - my journey as a network engineer

Home > RIP > RIPv2 Authentication

RIPv2 Authentication

The Cisco implementation of RIPv2 supports two modes of authentication: plain text  and MD5 authentication.

Plain text authentication is the default setting in every RIPv2 packet, when authentication is enabled.

Plain text authentication should not be used when security is an issue, because the unencrypted authentication password is sent in every RIPv2 packet.

To configure RIPv2 authentication between two routers you need to carry out these steps.

1. Define a key chain with a name

2. Define the key or keys on the chain

3. Specify password or key chain

4. Enable authentication on the interface and specify the key chain to be used

5. Specify if the interface will use plain text or MD5

6. Configure Key Management – This is optional

Example below.

R1(config)#key chain KEYCHAIN1
 R1(config-keychain)#?
 Key-chain configuration commands:
 default  Set a command to its defaults
 exit     Exit from key-chain configuration mode
 key      Configure a key
 no       Negate a command or set its defaults
R1(config-keychain)#key ?
 <0-2147483647>  Key identifier
R1(config-keychain)#key 1
 R1(config-keychain-key)#key-string CISCO123
 R1(config-keychain-key)#end
 R1#
 Jan  5 06:07:50.345: %SYS-5-CONFIG_I: Configured from console by console
 R1#conf t
 Enter configuration commands, one per line.  End with CNTL/Z.
 R1(config)#int fa0/0
 R1(config-if)#ip rip au
 R1(config-if)#ip rip authentication key
 R1(config-if)#ip rip authentication key-chain  KEYCHAIN1
 R1(config-if)#ip rip authentication key-chain  KEYCHAIN1 ?
 LINE    <cr>
R1(config-if)#ip rip authentication ?
 key-chain  Authentication key-chain
 mode       Authentication mode
R1(config-if)#ip rip authentication mode ?
 md5   Keyed message digest
 text  Clear text authentication
R1(config-if)#ip rip authentication mode md5 ?
 <cr>
R1(config-if)#ip rip authentication mode md5
 R1(config-if)#

Now configure the same on the remote end of the link to restore connectivity

Want to learn more about Network Automation?

Network Automation skills are becoming a must for network engineers of the future. Get started and learn the skills you need for the future with my course on Ansible for Network Engineers Today!

Show me more about the network automation course

Reader Interactions

Looking for Ansible Network Automation Training?


Learn how to install Ansible, write your first playbook and start automating your network today.


Check out my Ansible Network Automation Training

The Author

roger perkin ccie network automation engineer
Roger Perkin, (CCIE #50038) is a Senior Network & Security Consultant.
Currently working for Softcat plc.
Roger is an evangelist for Network Automation
and is continuing to develop skills in Ansible and the Devops culture.
Contact

Ansible

Where are Ansible Modules stored
Ansible IOS Command Example
Ansile Backup Cisco Config
How to Install Ansible Tower
Ansible Network Automation Training
Resources

Python

Best way to learn Python
Python for Network Automation

Home Office

Best Vertical Mouse
My Standing Desk
Folding Laptop Stand - Roost
How to clean computer screen and keyboard

Personal Development

How to Focus

Most Visited Pages

Software Upgrade Guides
Wireless Console Cable
Network Automation Tools 
Bose Connect Windows 10
Private VLANs explained
Cisco ISE Overview