Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

Navigation
Guide That Contains This Content
[+] Expand All
[-] Collapse All

    ipsec key pubkey-chain rsa

    Syntax

    [ no ] ipsec key pubkey-chain rsa { address ipAddress | name identityString }

    Release Information

    Command introduced in JunosE Release 7.1.0.

    Description

    Enables you to configure the public key for a remote peer with which you want to establish IKE SAs. This command accesses IPsec Peer Public Key Configuration mode, from which you can enter the peer public key data without the need for a digital certificate. Public keys are used during the tunnel establishment phase when the ISAKMP/IKE policy specifies RSA digital signature authentication. The no version removes the peer public key from the router.

    Options

    • ipAddress—IP address of the peer for which the public key can be used, in 32-bit dotted decimal format (for example, 192.168.32.2)
    • identityString—Identity of the remote peer for which the public key can be used, either in fully qualified domain name (FQDN) format (for example, group003.customer535.isp.net) or in FQDN format preceded by an optional user@ specification (for example, tsmith@group003.customer535.isp.net); maximum of 80 characters

    Mode

    Global Configuration

    Published: 2014-08-14