![]() ![]() To specify the local and remote authentication methods in an Internet Key Exchange Version 2 (IKEv2) profile, use theĪuthentication command in IKEv2 profile configuration mode. Router(config-ikev2-keyring-peer)# pre-shared-key cisco123 authentication (IKEv2 profile) Router(config-ikev2-keyring)# peer if-ipsec256-ikev2-keyring-peer Router(config)# crypto ikev2 keyring if-ipsec256-ikev2-keyring The following examples show how to specify the preshared key of an IP Security (IPsec) peer: IKEv2 keyring peer configuration (config-ikev2-keyring-peer)įor usage guidelines, see the Cisco IOS XE address (IKEv2 keyring) command. To remove the IP address, use the no form of this command. To specify an IPv4 address or the range of the peer in an Internet Key Exchange Version 2 (IKEv2) keyring, use the address command in IKEv2 keyring peer configuration mode. Router(config-ikev2-profile)# aaa authorization group psk list default li_policy address (IKEv2 keyring) Router(config)# crypto ikev2 profile if-ipsec256-ikev2-profile The following example shows how to configure the AAA authorization for a local group policy. IKEv2 profile configuration (config-ikev2-profile) Command HistoryĬisco IOS XE Catalyst SD-WAN Release 17.2.1vĬommand qualified for use in Cisco SD-WAN Manager CLI templates.įor usage guidelines, see the Cisco IOS XE aaa authorization (IKEv2 profile) command. Password-Specifies an unencrypted user password. This password argument defines the following values:Ġ-Specifies that the password is unencrypted.Ħ-Specifies that the password is encrypted. Specifies the AAA method list for the remote authentication method. Specifies the AAA method list that is used when the remote authentication method is preshared key. Specifies the AAA method list that is used when the remote authentication method is Extensible Authentication Protocol (EAP). Specifies the AAA method list that is used when the remote authentication method is certificate based. Specifies the AAA authorization for each user policy. (Optional) Specifies the authorization policy that is used through a local method. ![]() Specifies the AAA authorization for local or external group policy. To remove the AAA authorization, use the no form of this command. The aaa authorization command in IKEv2 profile configuration mode. To specify the authentication, authorization, and accounting (AAA) authorization for a local or external group policy, use set security-association replay window-size. ![]()
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |