Table of Contents
Advertisement
Command Reference Guide
client authentication host
Use the client authentication host command to enable the unit to act as an Xauth host when this Internet
key exchange (IKE) policy is negotiated with a peer. Use the no form of this command to disable this
feature. Variations of this command include the following:
client authentication host username <username>
client authentication host username <username> password <password>
client authentication host username <username> password <password> passphrase <phrase>
Syntax Description
password <password>
username <username>
passphrase <phrase>
Default Values
By default, if this command is not present in the IKE policy, the unit does not act as an Xauth host.
Command History
Release 5.1
Functional Notes
The specified credentials are programmed into the unit, and there is no prompt for entering values real
time. Therefore, schemes requiring real-time input or additional responses (e.g., SecureID) are not
supported. The client authentication host and the client authentication server commands are mutually
exclusive. Refer to
client authentication server list <listname> on page 3959
Usage Examples
The following example specifies the login credentials to be sent:
(config)#crypto ike policy 1
(config-ike)#client authentication host username jsmith password password1 passphrase phrase
60000CRG0-35E
Specifies the value sent via Xauth as the password.
Specifies the value sent via Xauth as the user name.
Optional. Specifies the value sent via Xauth as the passphrase. This is only
used with authentication type one time password (OTP).
Command was introduced.
Copyright © 2012 ADTRAN, Inc.
IKE Policy Command Set
for more information.
3957
Advertisement
Table of Contents
