Creating The Eap Profile; Creating Ikev2 Transform Sets - Cisco ASR 5000 Series Administration Manual
Femto network gateway
Hide thumbs
Also See for ASR 5000 Series:
- Product overview (992 pages) ,
- Administration manual (509 pages) ,
- Installation manual (317 pages)
Table of Contents
Advertisement
Femto Network Gateway Configuration
port ethernet <slot_number/port_number>
no shutdown
bind interface <aaa_fng_interface_name> <fng_context_name>
end
This example places the AAA group in the FNG context.
Creating the EAP Profile
Use the following configuration example to configure an EAP profile for FAP authentication:
configure
context <fng_context_name>
eap-profile <eap_profile_name>
mode authenticator-pass-through
end
In this example, the EAP method is used for FAP authentication. The eap-profile command creates the EAP
profile to be used in the crypto template (configured below) for the FNG service.
The mode authenticator-pass-through command specifies that the FNG functions as an authenticator pass-
through device, enabling an external EAP server to perform FAP authentication.
Creating IKEv2 Transform Sets
Use the following configuration example to create the required number of IKEv2 transform sets:
configure
context <fng_context_name>
ikev2-ikesa transform-set <ikev2_ikesa_tset1>
encryption aes-cbc-128
group 2
hmac sha1-96
prf sha1
exit
OL-24872-01
Configuring the System to Perform as a Femto Network Gateway ▀
Cisco ASR 5000 Series Femto Network Gateway Administration Guide ▄
43
Advertisement
Table of Contents
