domain-authentication send-only

Use domain-authentication send-only to configure IS-IS not to check the authentication information in the received Level-2 packets, including LSPs, CSNPs, and PSNPs.

Use undo domain-authentication send-only to restore the default.

Syntax

domain-authentication send-only

undo domain-authentication send-only

Default

When domain authentication mode and key are configured, a Level-2 or Level-1-2 router checks the authentication information in the received packets.

Views

IS-IS view

Predefined user roles

network-admin

Usage guidelines

When domain authentication mode and key are configured, a Level-2 or Level-1-2 router adds the key in the specified mode into transmitted Level-2 packets (including LSPs, CSNPs, and PSNPs). It also checks the key in the received Level-2 packets.

To prevent packet exchange failure in case of an authentication key change, configure IS-IS not to check the authentication information in the received packets.

Examples

# Configure IS-IS not to check the authentication information in the received packets.

<Sysname> system-view
[Sysname] isis 1
[Sysname-isis-1] domain-authentication send-only

Related commands

area-authentication send-only

domain-authentication-mode

isis authentication send-only