 | Copyright © 2008, Juniper Networks, Inc. All rights reserved. Trademark Notice. | |
- authentication-method (dsa-signatures
| pre-shared-keys | rsa-signatures);
- [edit security ike proposal proposal-name]
Statement modified in Release 8.5 of JUNOS software.
Specifies the method the device uses to authenticate the source of Internet Key Exchange (IKE) messages. The pre-shared-keys option refers to a preshared key, which is a key for encryption and decryption that both participants must have before beginning tunnel negotiations. The rsa-signatures and dsa-signatures options refer to two kinds of digital signatures, which are certificates that confirm the identity of the certificate holder. (The default method is a preshared key.)
This statement is supported on J-series and SRX-series devices.
dsa-signatures—Specifies that the Digital Signature Algorithm (DSA) is used.
pre-shared-keys—Specifies that a preshared key, which is a secret key shared between the two peers, is used during authentication to identify the peers to each other. The same key must be configured for each peer. This is the default method.
rsa-signatures—Specifies that a public key algorithm, which supports encryption and digital signatures, is used.
For configuration instructions and examples, see the JUNOS Software Security Configuration Guide.
security—To view this statement in the configuration.
security-control—To add this statement to the configuration.
| Copyright © 2008, Juniper Networks, Inc. All rights reserved. Trademark Notice. | |