Skip to main content

cluster time-service ntp security modify

Contributors
Suggest changes

Modify NTP security settings

Availability: This command is available to cluster administrators at the advanced privilege level.

Description

The cluster time-service ntp security modify command allows setting of security parameters related to the Network Time Protocol (NTP) subsystem.

Parameters

[-is-query-enabled {true|false}] - Is Querying of NTP Server Enabled? (privilege: advanced)

Setting this parameter to true allows querying of the NTP subsystem from systems external to the cluster. For example, querying a node using the standard "ntpq" command can be enabled by this command. The default setting is false to protect against possible security vulnerabilities. If querying of the NTP subsystem is disabled, the cluster time-service ntp status show command can be used to obtain similar information. Although querying of the NTP subsystem from external hosts can be disabled with this command, executing a local query to the localhost address is always enabled.

Examples

The following example enables the querying of the NTP subsystem from clients external to the cluster:

cluster-1::> cluster time-service ntp security modify -is-query-enabled true