|Applies To||RSA Product Set: SecurID|
RSA Product/ Service Type: Authentication Manager
RSA Version/Condition: 8.x
Getting the below timeout error when trying to check NTP peers status from SSH session or console connection, even though NTP is synchronizing correctly
am81p:/home/rsaadmin # ntpq -p
The default NTP configuration on Authentication Manager 8 ignores any NTP queries from IPv6 addresses. Since Authentication Manager does not come with IPv6 totally disabled, so administrative functions coming from the IPv6 localhost are not allowed, unless the ntp.conf file is edited to allow NTP queries from the IPv6 localhost.
Below is part of the default /etc/ntp.conf file on an AM8.1 server. The lines restrict <IP> control which IPs are allowed to query NTP information. There is a restrict line for the IPv4 localhost address (127.0.0.1), but not for the IPv6 localhost (::1).
am81p:/home/rsaadmin # cat /etc/ntp.conf
|Resolution||Edit the ntp.conf file and add a line to allow NTP queries from the IPv6 localhost.|