Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?




Hierarchy Level


Configure IKE shared secret details. If the shared secret passed between devices does not match, a session is not set up.


To configure a host-to-host VPN connection, you must configure the ike-secrets statement.



Specify the name of the IKE secret.

id id

Specify the identity that the secret belongs to—for example, an IP address, a domain name, or an e-mail address. This identity matches local and remote identities as exchanged in the IKE security association (SA) negotiation at the [edit security host-vpn connections hierarchy level.

secret (ascii-text ascii-text | hexadecimal hexadecimal)

Define the preshared private key associated with the identity in either ASCII or hexadecimal format.

Required Privilege Level

security—To view this statement in the configuration.

security-control—To add this statement to the configuration.

Release Information

Statement introduced in Junos OS Evolved Release 18.3R1.