
[OSPF](/ospf) used to only support plain text and MD5 authentication but since IOS 15.4(1)T, OSPF also supports HMAC-SHA (Hash Message Authentication Code Secure Hash Algorithm).  In addition, OSPF now uses key chains like [RIP](/rip) and [EIGRP](/eigrp).

However, the configuration process for IOS-XR has changed:

First, you need to define the key-chain:

```vbnet
key chain R1
 key 1
  key-string R1_Password
  cryptographic-algorithm hmac-sha-256
 commit
```

Then, you need to apply this key-chain to the OSPF area:

```kotlin
router ospf 1
 area 0
  authentication keychain R1
  interface GigabitEthernet0/0/0/2
 commit
```

This `authentication` command can be applied at the interface or the `router ospf` configuration mode. 

Links:

https://forum.networklessons.com/t/ospf-hmac-sha-extended-authentication/1940/12?u=lagapides

https://networklessons.com/cisco/ccie-routing-switching-written/ospf-hmac-sha-extended-authentication

https://www.cisco.com/c/en/us/td/docs/ios_xr_sw/iosxr_r3-7/routing/command/reference/rr37ospf.html#wp998765

https://networklessons.com/cisco/ccie-routing-switching-written/how-to-configure-ospf-plain-text-authentication

https://networklessons.com/cisco/ccie-routing-switching-written/how-to-configure-ospf-md5-authentication

OSPF - HMAC-SHA Extended Authentication

NHRP

NTP - securing with MD5 authentication and a Windows NTP server

NTP poll interval

NTP server and client and the master command

NTP troubleshooting and debugging tools

NTP versions 3 and 4

Native VLANs and untagged frames

NetFlow - Flow Samplers

NetFlow - applying to an SVI

NetFlow - what is a flow

NetFlow local cache size

NetFlow

Network - Discontiguous or Discontinuous

Network - Discontiguous

Network - Example of communication, encapsulation, and decapsulation, between hosts

Network - Flapping

Network - Layer 2 network

Network - Layer 3 network

Network - Monitoring multiple IPs of a single device with Observium

Network - Observium vs LibreNMS

Network - broadcast domain

Network - control plane

Network - data plane

Network Address Translation (NAT)

Network Collisions

Network Design - Spine and leaf architecture

Network Design - Switch oversubscription ratios

Network Design - Traffic Engineering

Network Design - on-premises and off-premises

Network Time Protocol (NTP)

Network design - confine VLANs to as few access switches as possible

Network planes

Networking - what is a socket

Networks - Overlay Network

Networks - Overlay Transport Virtualization (OTV)

Networks - Spanning Layer 2 networks across remote sites

Networks - Underlay Network

Next Generation Multicast Virtual Private Network (NG-MVPN)

Nexus - using vPC with HSRP

Nexus - what is vPC

Nexus lacp rate fast

Nexus

OSI Model

OSPF - Advertising point to multipoint networks

OSPF - Cost of summarized routes

OSPF - DR-BDR election per broadcast domain

OSPF - DR-BDR election priority of zero

OSPF - ECMP across two different areas

OSPF - Enabling authentication

OSPF - Link State Updates (LSUs)

OSPF - MPLS SuperBackbone

OSPF - NBMA neighbors listen on 224.0.0.5

OSPF - NSSA P-bit

OSPF - Propagation of routes between areas

OSPF - Stub areas and allowed LSAs

OSPF - Type1 LSA

OSPF - Update pacing timers

OSPF - default-information originate always command

OSPF - distribute-list filtering

OSPF - manual neighbor configuration

OSPF - point-to-multipoint network type

OSPF - route filtering

OSPF - route summarization

OSPF - summary-address nssa-only on an ABR

OSPF - what triggers a DR-BDR election

OSPF ABR Type 3 LSA filtering using access lists

OSPF ABR and Loop Prevention

OSPF Authentication for v2 and v3

OSPF DR BDR election and neighbor adjacencies

OSPF DR BDR election criteria

OSPF DR BDR election process

OSPF Design - When to create new instance

OSPF Determining which LSA is newer

OSPF Discontiguous Area 0

OSPF E1 E2 N1 N2 routes

OSPF Forwarding Address

OSPF Hello packets unicast and multicast

OSPF IP Unnumbered

OSPF IS-IS comparison

OSPF Incremental SPF and receipt of LSAs

OSPF LSA Recursion

OSPF LSA Sequence Numbers

OSPF LSA Types

OSPF NSSA ABR advertises default route

OSPF Not So Stubby Area NSSA

OSPF Path selection

OSPF Routing Bit

OSPF SPF Scheduling and throttling timers

OSPF TTL Security Check

OSPF Troubleshooting

OSPF Type 4 LSA

OSPF Type 5 LSA

OSPF Type 7 LSA

OSPF Why it is not suitable for use on the Internet

OSPF advertising loopback network

OSPF area inactive

OSPF area notation

OSPF area type mismatch

OSPF backbone area 0