SROS Command Line Interface Reference Guide
IKE Policy Command Set
client authentication server list <listname>
Use the client authentication server list command to enable the unit to act as an Xauth server (edge
device). Use the no form of this command to disable this feature.
Syntax Description
<listname>
Specifies the named list created with the aaa authentication login command.
Default Values
By default, the router does not act as an Xauth server and extended authentication is not performed.
Functional Notes
When this IKE policy is negotiated and the peer has indicated Xauth via the IKE authentication method and/or
the Xauth vendor ID, this command allows the unit to perform as an Xauth server (edge device). The specified
AAA login method is used to identify the location of the user authentication database. The client authentication
host and the client authentication server commands are mutually exclusive. See
client configuration pool
<poolname>
on page 1265 for more information.
Usage Examples
The following example enables Xauth as an Xauth server and specifies which AAA method list to use in locating
the user database:
ProCurve(config-ike)#client authentication server list clientusers
5991-2114
© Copyright 2007 Hewlett-Packard Development Company, L.P.
1264