[Contents] [Prev] [Next] [Index] [Report an Error]

ipsec key pubkey-chain rsa

Syntax

[ no ] ipsec key pubkey-chain rsa { address ipAddress | name identityString }

Release Information

Command introduced in JUNOSe Release 7.1.0.

Description

Enables you to configure the public key for a remote peer with which you want to establish IKE SAs. This command accesses IPSec Peer Public Key Configuration mode, from which you can enter the peer public key data without the need for a digital certificate. Public keys are used during the tunnel establishment phase when the ISAKMP/IKE policy specifies RSA digital signature authentication. The no version removes the peer public key from the router.

Options

ipAddress—IP address of the peer for which the public key can be used, in 32-bit dotted decimal format (for example, 192.168.32.2)
identityString—Identity of the remote peer for which the public key can be used, either in fully qualified domain name (FQDN) format (for example, group003.customer535.isp.net) or in FQDN format preceded by an optional user@ specification (for example, tsmith@group003.customer535.isp.net); maximum of 80 characters

Global Configuration

[Contents] [Prev] [Next] [Index] [Report an Error]