96 Chapter 3 Using certificates
L2TP/IPsec authentication
In the Authentication section, complete the following information:
1
2
3
4
5
6
7
8
9
10 Select the server certificate issued by the same CA as the remote branch
11 Click OK.
NN46110-600
Under Local UID, enter the user ID of the local VPN Router that you are
configuring.
Under Peer UID, enter the user ID of the remote VPN Router that you are
configuring.
Enter the password for the local UID, then confirm the password to verify
that you entered it correctly. If you selected a variation of MS-CHAP V2
authentication, no password is required for the Local UID.
Click Enable or Disable to enable or disable compression.
Click to enable or disable the Compression/Encryption Stateless Mode
option. This option is not used if encryption and compression are both
disabled.
The L2TP Access Concentrator (for L2TP authentication only) field appears
if you selected L2TP as the preferred tunnel type for the branch office
connection. Use this entry to specify the L2TP access concentrator that you
want to perform authentication between the VPN Router and the NAS.
Select an IPsec data protection minimum level (Triple DES, 56-bit DES, or
Authentication Only).
Select a valid issuer CA from the list.
Enter the DN to identify the remote branch office site.
certificate from Local Identity list.