crypto isakmp policy <priority>
authentication {pre-share|rsa-sig|ecdsa-256|ecdsa-384}
disable
enable [bypass|secret]
encryption {3DES|AES128|AES192|AES256|DES}
group {1|2|14|19|20}
hash {md5|sha|sha1-96|sha2-256-128|sha2-384-192}
prf {PRF-HMAC-MD5|PRF-HMAC-SHA1|PRF-HMAC-SHA256|PRF-HMAC-SHA384}
lifetime <seconds>
no disable
version {v1|v2}
Description
This command configures Internet Key Exchange (IKE) policy parameters for the Internet Security Association and Key Management Protocol (ISAKMP). To define settings for a ISAKMP policy, issue the command crypto isakmp policy <priority>
then press Enter. The CLI will enter config-isakmp mode, which allows you to configure the policy values.
Example
The following command configures the RSAsignature authentication method for the given IKE policy:
(host) [mynode] (config) #crypto isakmp policy 1
(host) [mynode] (config-isakmp) #authentication rsa-sig
Key:*******Re-Type Key:*******
Related Commands
Command | Description |
Displays IKEpolicies configured for ISAKMP. |
Command History
Release | Modification |
ArubaOS 8.0.0.0 | Command introduced. |
Command Information
Platforms | License | Command Mode |
All platforms | The following settings require the Advanced Cryptogram (ACR) license:
All other parameters are supported in the base OS. | Config mode on Mobility Conductor. |