Local-Identity - H3C MSR Series Command Reference Manual

Comware 7 security

Hide thumbs Also See for MSR Series:

Table of Contents

undo keychain keychain-name

No IKE keychain is specified for pre-shared key authentication.

IKE profile view

Predefined user roles

network-admin

keychain-name: Specifies an IKE keychain name, a case-insensitive string of 1 to 63 characters.

Usage guidelines

You can specify a maximum of six IKE keychains for an IKE profile. An IKE keychain specified earlier

has a higher priority.

# Specify the IKE keychain abc for IKE profile 1.

<Sysname> system-view

[Sysname] ike profile 1

[Sysname-ike-profile-1] keychain abc

Related commands

ike keychain

local-identity

Use local-identity to configure the local ID, the ID that the device uses to identify itself to the peer

during IKE negotiation.

Use undo local-identity to restore the default.

local-identity { address { ipv4-address | ipv6 ipv6-address } | dn | fqdn [ fqdn-name ] | user-fqdn

[ user-fqdn-name ] }

undo local-identity

No local ID is configured for an IKE profile. An IKE profile uses the local ID configured in system view

by using the ike identity command. If the local ID is not configured in system view, the IKE profile

uses the IP address of the interface to which the IPsec policy is applied as the local ID.

IKE profile view

Predefined user roles

network-admin

address { ipv4-address | ipv6 ipv6-address }: Uses an IPv4 or IPv6 address as the local ID.

dn: Uses the DN in the local certificate as the local ID.