authentication exclude

Function

The authentication exclude command configures LDP peers in a batch that a local device does not authenticate after LDP keychain or LDP MD5 is configured to authenticate all LDP peers or LDP peers in a specified group.

The undo authentication exclude command enables a local device to authenticate all LDP peers using LDP keychain or LDP MD5.

By default, a local device is enabled to authenticate all LDP peers using LDP keychain or LDP MD5.

Format

authentication exclude peer peer-id

undo authentication exclude peer peer-id

Parameters

Parameter	Description	Value
peer peer-id	Specifies the ID of an LDP peer.	This value is in dotted decimal notation.

Views

MPLS-LDP view

Default Level

2: Configuration level

Task Name and Operations

Task Name	Operations
mpls-ldp	write

Usage Guidelines

Usage Scenario

By default, a local device is enabled to authenticate all LDP peers using LDP keychain or LDP MD5 after LDP keychain or LDP MD5 is configured for a peer group or all LDP peers. To disable the local device from authenticating some LDP peers, run the authentication exclude command.

Precautions

The following commands are mutually exclusive for a specified LDP peer:

authentication key-chain peer peer-id name keychain-name
md5-password { plain | cipher } peer-lsr-id password

Example

# Disable a local device from authenticating an LDP peer with IP address 4.4.4.4 after LDP keychain or MD5 is configured for all LDP peers or LDP peers in a specified group.

<sysname> system-view
[sysname] mpls ldp
[sysname-mpls-ldp] authentication exclude peer 4.4.4.4