[Contents] [Prev] [Next] [Index] [Report an Error]

Configuring the Authentication Algorithm and Key

To configure an authentication algorithm and key, include the authentication statement at the [edit security ipsec security-association sa-name manual direction (inbound | outbound | bi-directional)] hierarchy level:



[edit security ipsec security-association sa-name manual direction (inbound | outbound | bidirectional)]

authentication {
algorithm (hmac-md5-96 | hmac-sha1-96); 
key (ascii-text key | hexadecimal key);
}

The algorithm can be one of the following:

hmac-md5-96—Hash algorithm that authenticates packet data. It produces a 128-bit authenticator value and 96-bit digest.
hmac-sha1-96—Hash algorithm that authenticates packet data. It produces a 160-bit authenticator value and a 96-bit digest.

The key can be one of the following:

ascii-text key—ASCII text key. With the hmac-md5-96 option, the key contains
16 ASCII characters. With the hmac-sha1-96 option, the key contains 20 ASCII characters.
hexadecimal key—Hexadecimal key. With the hmac-md5-96 option, the key contains 32 hexadecimal characters. With the hmac-sha1-96 option, the key contains 40 hexadecimal characters.

[Contents] [Prev] [Next] [Index] [Report an Error]