When FIPS mode is enabled, Network Time Protocol (NTP) uses OpenSSL Federal Information Processing Standards (FIPS) library and supports only FIPS-compliant algorithms for authentication (SHA-256 authentication only). MD5 key configuration support is not available when FIPS mode is enabled, and existing MD5 key configurations are removed when FIPS mode comes into effect.
ExtremeSwitching X450-G2, X460-G2, X670-G2, X435, X440-G2, X465, X590, X620, X690, X695, X870 series switches.
The following command now does not allow the md5 option when FIPS mode is on:
create ntp key keyid [md5 | sha256] {encrypted encrypted_key_string | key_string}