Authentication - Cisco MDS 9124 - Fabric Switch Reference

Chapter 2 A Commands
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m

authentication

To configure the authentication method for an IKE protocol policy, use the authentication command in
IKE policy configuration submode. To revert to the default authentication method, use the no form of
the command.
Syntax Description pre-share
rsa-sig
Defaults Preshared key.
Command Modes
IKE policy configuration submode.
Command History Release
3.0(1)
Usage Guidelines To use this command, enable the IKE protocol using the crypto ike enable command. In addition, you
must configure the identity authentication mode using the fully qualified domain name (FQDN) before
you can use RSA signatures for authentication. Use the identity hostname command for this purpose.
Examples The following example shows how to configure the authentication method using the preshared key.
switch# config terminal
switch(config)# crypto ike domain ipsec
switch(config-ike-ipsec)# policy 1
switch(config-ike-ipsec-policy)# authentication pre-share
The following example shows how to configure the authentication method using the RSA signatures.
switch(config-ike-ipsec-policy)# authentication rsa-sig
The following example shows how to revert to the default authentication method (preshared key).
switch(config-ike-ipsec-policy)# no authentication rsa-sig
OL-16217-01, Cisco MDS SAN-OS Release 3.x
authentication {pre-share | rsa-sig}
no authentication {pre-share | rsa-sig}
Configures the preshared key as the authentication method.
Configures RSA signatures as the authentication method.
Modification
This command was introduced.
Cisco MDS 9000 Family Command Reference
authentication
2-19