Availability:
This feature was introduced in M2000 V200R002.

Summary:

The M2000 supports the NTP/SNTP network time synchronization protocols so that it can
synchronize time with the time server of a third-party system and provide synchronization
time sources for NEs. This ensures that the time between the M2000 and the NEs is
synchronized.
In addition, according to the security policy of the telecom operator, the M2000 uses MD5
encrypted algorithm defined in the NTP V3 in time synchronization.

Benefits:

This feature ensures that the time of NEs on the entire network is synchronized. In addition, it
supports adopting the encrypted authentication to enhance the security of network time
synchronization.

Description:

If the NTP server provided by a telecom operator network cannot communicate with the
mobile communication devices managed by the M2000, the M2000 server can function as an
intermediate NTP server. The M2000 server obtains the reference time from the NTP server
provided by the telecom operator and sends time synchronization signals to NEs to ensure the
consistency between the time of all NEs and the time of the time source. The M2000 monitors
the operating status of the NTP service in real time and generates an alarm after detecting any
exceptions in the NTP service or a synchronization failure with the upper-level time source.
The NTP protocol supports two authentication modes: unauthenticated and encrypted
authentication. Telecom operators can determine the authentication mode according to
security requirements. If the upper-layer NTP server provided by the telecom operator uses
the encrypted authentication mode, the M2000 server synchronizes time with the time of the
upper-layer NTP server in encrypted authentication mode. After NEs send a time
synchronization request to the M2000, the M2000 allows NEs to synchronize time with the
M2000 server time in encrypted authentication mode.
This feature requires telecom operators to provide a top-level clock source server. If telecom
operators require a top-level clock source server from Huawei, they need to purchase Huawei
entire-network time synchronization solution. For details about the solution, see the feature

WOFD-540100 Network Time Synchronization Solution.

Enhancement:
The following function is added to M2000 V200R011C01:
?  In the ATAE cluster solution, the OSMU acts as an intermediate NTP server.
The following functions are added to M2000 V200R011C00:
?  The M2000 generates an alarm after detecting any exceptions in the NTP service or a
synchronization failure with the upper-level time source.
?  The M2000 functions as an intermediate NTP server in an SLS system, Sun-based local
and remote HA systems, HP-based single-server and local HA systems, and ATAE –
based single-server and local HA systems.
The following function is added to M2000 V200R009:
?  The M2000 supports encrypted authentication of the NTP.

Dependency:
None

Nice topic

What is MD5?

What is OSMU?

Awesome post

OSMU: OSS Self maintenance unit

how can we ensure encrypted authentication of the NTP?

useful document, thanks