Hide Navigation Pane
Show Navigation Pane
Download
SHA1
ipsec key pubkey-chain rsa
Syntax
[ no ] ipsec key pubkey-chain rsa { address ipAddress | name identityString }
Release Information
Command introduced in JunosE Release 7.1.0.
Description
Enables you to configure the public key for a remote peer with which you want to establish IKE SAs. This command accesses IPSec Peer Public Key Configuration mode, from which you can enter the peer public key data without the need for a digital certificate. Public keys are used during the tunnel establishment phase when the ISAKMP/IKE policy specifies RSA digital signature authentication. The no version removes the peer public key from the router.
Options
- ipAddress—IP address of the peer for which the public key can be used, in 32-bit dotted decimal format (for example, 192.168.32.2)
- identityString—Identity of the remote peer for which the public key can be used, either in fully qualified domain name (FQDN) format (for example, group003.customer535.isp.net) or in FQDN format preceded by an optional user@ specification (for example, tsmith@group003.customer535.isp.net); maximum of 80 characters
Mode
Global Configuration
