NTP Authentication

When you enable NTP authentication, the device synchronizes to a time source only if the source carries the authentication keys specified with the source by key identifier. The device drops any packets that fail the authentication check, and prevents them from updating the local clock.

VRF Management for Client

#configure terminal	Enter configure mode
(config)#feature ntp vrf management	Enable feature on default or management VRF. By default this feature runs on management VRF..
(config)#ntp server 2001::1 vrf management	Configure NTP server IP address.
(config)#ntp authenticate vrf management	Enable NTP Authenticate. NTP authentication is disabled by default.
(config)#ntp authentication-key 1234 md5 text vrf management	Configure NTP authentication key along with MD5 value.
(config)#ntp trusted-key 1234 vrf management	Configure trusted key
(config)#commit	Commit the configuration
(config)#exit	Exit from the Configure Mode.

Validation

User Defined VRF for Client

#configure terminal	Enter configure mode
(config)#feature ntp vrf vrf1	Enable feature on default or management VRF. By default this feature runs on management VRF..
(config)#ntp server 2001::1 vrf vrf1	Configure NTP server IP address.
(config)#ntp authenticate vrf vrf1	Enable NTP Authenticate. NTP authentication is disabled by default.
(config)#ntp authentication-key 1 md5 cisco vrf vrf1	Configure NTP authentication key along with MD5 value.
config)#ntp request-key 1 vrf vrf1	Configure request key.
(config)#ntp trusted-key 1 vrf vrf1	Configure trusted key
(config)#commit	Commit the configuration
(config)#exit	Exit from the Configure Mode.

Validation