Set BFD authentication mode and password

This command allows to specify authentication mode and key to be shared with BFD peer for all sessions under VLAN context.

Syntax


 bfd authentication keyed-sha1 | meticulous-Keyed-sha1 KEY-ID key simple | encrypted password
no bfd authentication keyed-sha1 | meticulous-Keyed-sha1 KEY-ID key simple | encrypted password

Description

Configure authentication mode and key for all BFD sessions under the current VLAN.

Options

BFD: Configure Bidirectional Forwarding Detection (BFD) for the VLAN.
authentication: Configure authentication mode and key for all BFD sessions under the current VLAN.
Keyed-sha1: Use authentication mode SHA-1.
Meticulous keyed-sha1: Use authentication mode meticulous SHA-1.
Key-id: Specify the ID, in the range 0 to 255, to uniquely recognize a key.
key: Enter the password to be shared between BFD peers.
simple: Configure the authentication password using a plaintext string.
encrypted: Configure the authentication password using a pre-encrypted string copied from a compatible HP networking device.

Password will be prompted interactively as above and set the entered value in the configuration.

Simple password

switch(vlan-10)# bfd authentication keyed-sha1 1 key simple
Enter password#: ******
Re-enter password#: ******

Without include or encrypt credentials:

; J9850A Configuration Editor; Created on release #KB.16.02.0000x
; Ver #0b:fc.59.f4.7b.ff.ff.fc.ff.ff.3f.ef:0d
hostname "switch-name"
module A type j9989a
module C type j9550a
module F type j9987a
snmp-server community "public" unrestricted
oobm
  ip address dhcp-bootp
  exit
vlan 1
  name "DEFAULT_VLAN"
  untagged A2-A24,C1-C24,F1-F24
  ip address dhcp-bootp
  exit
ip routing
router ospf
  area 0.0.0.2
  area 0.0.0.3
  area backbone
  enable
  exit
bfd enable
bfd echo-src-ip-address 2.2.2.2
vlan 20
  untagged A1
    bfd min-transmit-interval 10 min-receive-interval 10 detect-multiplier 3
    bfd min-echo-receive-interval 700
    bfd authentication meticulous-Keyed-sha1 1 key simple
   ip address 100.100.100.100 255.255.255.0
    ip ospf 100.100.100.100 area backbone
    ip ospf 100.100.100.100 bfd
    exit

With include credentials:

; J9850A Configuration Editor; Created on release #KB.16.02.0000x
; Ver #0b:fc.59.f4.7b.ff.ff.fc.ff.ff.3f.ef:0d
hostname "switch-name"
module A type j9989a
module C type j9550a
module F type j9987a
include-credentials
snmp-server community "public" unrestricted
oobm
  ip address dhcp-bootp
  exit
vlan 1
  name "DEFAULT_VLAN"
  untagged A2-A24,C1-C24,F1-F24
  ip address dhcp-bootp
  exit
ip routing
router ospf
  area 0.0.0.2
  area 0.0.0.3
  area backbone
  enable
  exit
bfd enable
bfd echo-src-ip-address 2.2.2.2
vlan 20
  untagged A1
    bfd min-transmit-interval 10 min-receive-interval 10 detect-multiplier 3
   bfd min-echo-receive-interval 700
    bfd authentication meticulous-Keyed-sha1 1 key simple “hp1234”
    ip address 100.100.100.100 255.255.255.0
    ip ospf 100.100.100.100 area backbone
    ip ospf 100.100.100.100 bfd
    exit

With Include and Encrypt credentials:

; J9850A Configuration Editor; Created on release #KB.16.02.0000x
; Ver #0b:fc.59.f4.7b.ff.ff.fc.ff.ff.3f.ef:0d
hostname "switch-name"
module A type j9989a
module C type j9550a
module F type j9987a
encrypt-credentials
include-credentials
snmp-server community "public" unrestricted
oobm
  ip address dhcp-bootp
  exit
vlan 1
  name "DEFAULT_VLAN"
  untagged A2-A24,C1-C24,F1-F24
  ip address dhcp-bootp
  exit
ip routing
router ospf
  area 0.0.0.2
  area 0.0.0.3
  area backbone
  enable
  exit
bfd enable
bfd echo-src-ip-address 2.2.2.2
vlan 20
  untagged A1
    bfd min-transmit-interval 10 min-receive-interval 10 
   detect-multiplier 3
   bfd min-echo-receive-interval 700
    bfd authentication meticulous-Keyed-sha1 1 key simple
   aH4ihIbkKOGNXpHneZEJqVRuqiqYDxOhLCh0TDtPjUA="
    ip address 100.100.100.100 255.255.255.0
    ip ospf 100.100.100.100 area backbone
    ip ospf 100.100.100.100 bfd
    exit

How to input encrypted password

switch(vlan-20)# bfd authentication keyed-sha1 2 key encrypted 
aH4ihIbkKOGNXpHneZEJqVRuqiqYDxOhLCh0TDtPjUA=
HP-5406Rzl2(vlan-20)# exit

; J9850A Configuration Editor; Created on release #KB.16.02.0000x
; Ver #0b:fc.59.f4.7b.ff.ff.fc.ff.ff.3f.ef:0d
hostname "switch-name"
module A type j9989a
module C type j9550a
module F type j9987a
include-credentials
snmp-server community "public" unrestricted
oobm
  ip address dhcp-bootp
  exit
vlan 1
  name "DEFAULT_VLAN"
  untagged A2-A24,C1-C24,F1-F24
  ip address dhcp-bootp
  exit
ip routing
router ospf
  area 0.0.0.2
  area 0.0.0.3
  area backbone
  enable
  exit
bfd enable
bfd echo-src-ip-address 2.2.2.2
vlan 20
  untagged A1
    bfd min-transmit-interval 10 min-receive-interval 10 detect-multiplier 3
   bfd min-echo-receive-interval 700
    bfd authentication meticulous-Keyed-sha1 1 key simple 
   "aH4ihIbkKOGNXpHneZEJqVRuqiqYDxOhLCh0TDtPjUA="
    ip address 100.100.100.100 255.255.255.0
    ip ospf 100.100.100.100 area backbone
    ip ospf 100.100.100.100 bfd
    exit