sandpiperland.com sandpiperland.com sandpiperland.com
  Main Page >> About Us >> Add Url >> Privacy >> Terms of Service >> Add Your Article
Search:   
Add Url
 

Computers & Software

Lifestyle & Fashion

Events & News

Art & Creative

Food & Recipe

Shopping Online

Sports

Hotels & Travel

Self Enhancement

Law & Politics

Medicine & Treatment

People & Society

Family & Home

Education & Learning

Vehicles & Automotive

Estate & Realty

Careers & Employment

Music & Entertainment

Research & Science

Investment & Finance

Hygiene & Health

Games & Play

Children

Business & Commerce
 

Main Page › Computers & Software › PC & Desktops
 

Cisco Certification: Introduction To ISDN, Part IV
 
Author: Chris Bryant

In part III of this ISDN primer, we learned that PPP has two main methods of authentication that Cisco certification candidates need to know how to configure: PAP and CHAP.

PAP has very few advantages over CHAP. PAP passwords are carried over the line in clear-text, which in today's world is a very bad idea. PAP configuration also requires additional configuration with the "ppp pap sent-username" command, so anyone who can see your running configuration can also see the PAP password.

The only advantage PAP has over CHAP is a slim one. With PAP, a different password can be used by the each of the routers involved in the authentication. CHAP requires that the password be the same. Why? We'll see as we examine CHAP authentication.

The First Step to Configuring CHAP

CHAP requires you to configure a username / password combination for any remote device that will be involved in authentication. (We're assuming that the routers have already been configured with their names via the global hostname command.) Both routers will use the password CISCO.

R1:

username R2 password CISCO

int bri0

encapsulation ppp

ppp authentication chap

R2:

username R1 password CISCO

int bri0

encapsulation ppp

ppp authentication chap

Why CHAP Authentication Requires The Same Password On Both Routers

Remember how PAP sends the password over the line in clear-text? CHAP does not actually send the password over the line at all. Instead, CHAP runs a hash algorithm using the password and a random number. It is the result of this hash that is passed over the link. The remote router receives the hash result, and runs the exact same algorithm. If the result is the same, the authentication attempt will be successful. If the result is different, the authentication will fail. For this reason, the passwords must be the same.

Debug The Connection If Authentication Fails

Since two passwords are involved, the chances of one of the passwords being mistyped doubles. If you configure CHAP and the link dials but drops almost immediately, there's an authentication problem. Run debug ppp negotiation and attempt to dial the line again. The output of this particular debug will show you where the problem is.
Author Bio:
Chris Bryant is a reputed author. Chris likes to write articles about this subject.
You can search for this article using: pc world, tablet pc, pocket pc, metro pcs, pocket pc software, pocket pc freeware, pc anywhere, pc repair
 
 
 

Related Articles
 
Low Cost Internet Advertising Solution versus Conventional Advertising
 
Photoblogging: Explosive Persuasive Power
 
An Introduction To LCD Projector Rentals
 
5 Ways to Speed Up Your PC
 
How to Build Website Traffic
 
Your Guide To Web Site Submission To Increase Traffic
 
Basics of private label rights: Its importance and its implication in Web Marketing.
 
How To Start An Internet Business - Site Layout
 
Wireless Security Workshop
 
Make Your Computer Run Faster!
 
 
 
Main Page >> Privacy >> Terms of Service  
© 2006-2008 www.sandpiperland.com All Rights Reserved Worldwide.