certificate

Syntax

certificate {local-certificate certificate-id ;peer-certificate-type (pkcs7 | x509-signature);trusted-ca ( ca-index | use-all);}

Hierarchy Level

[edit security group-vpn member ike policy policy-name][edit security group-vpn server ike policy policy-name][edit security ike policy policy-name]

Release Information

Statement introduced in Release 8.5 of Junos OS. Support for group-vpn hierarchies added in Junos OS Release 10.2.

Description

Specify usage of a digital certificate to authenticate the virtual private network (VPN) initiator and recipient. (This statement is not supported on dynamic VPN implementations.)

Options

The remaining statements are explained separately.

Usage Guidelines

For configuration instructions and examples, see the Junos OS Security Configuration Guide.

Required Privilege Level

security—To view this statement in the configuration.

security-control—To add this statement to the configuration.

Copyright© 1999-2010 Juniper Networks, Inc. All rights reserved.