Tag Archives: how to configure chap

How to configure CHAP {Challenge-Handshake Authentication Protocol} on cisco routers

This article is all about how to configure CHAP {Challenge-Handshake Authentication Protocol} on cisco routers. In the previous article, we learn about PAP configuration on cisco routers. There is two point to point authentication protocols are present on the routers that are PAP and CHAP. But CHAP is more secure than PAP because in CHAP authentication protocol username and password are sent in encrypted form and in PAP authentication protocol username and password are sent in a plain text. So generally we use CHAP authentication protocol on routers rather than PAP for enhancing the security of your router. In this article, we also learn that what is CHAP and why we configure CHAP on routers. CHAP is an authentication protocol used by point to point protocol servers to validate the identity of the remote client. In CHAP authentication protocol we use the three-way handshake to verify a client’s identity. CHAP also sends challenges after a certain time to make sure that client has not been replaced by intruders. Generally, CHAP configured on routers because it provides protection against replay attacks by the peer through the use of an incrementally changing identifier of a variable change value. 

Continue reading How to configure CHAP {Challenge-Handshake Authentication Protocol} on cisco routers