Ike authentication with preshared key, Ike authentication: certificate parameters, Chapter 3 – Nortel Networks 608(WL) User Manual

Page 42

Advertising
background image

Chapter 3

Configuration via Local Pages

E-DOC-CTC-20051017-0169 v0.1

40

IKE Authentication with

Preshared Key

When you select Use Preshared Key Authentication, the following fields have to be
completed:



Preshared Secret:
A string to be used as a secret password for the VPN connection. This secret
needs to be identically configured at both peers (local and remote peer).



Confirm Secret:
The Preshared Secret value is not shown in clear text in the SpeedTouch™
Web page. In order to protect from typing errors, you have to type the key
twice, in order to confirm your original entry.



Local ID Type and Local ID:
The Local ID identifies the local SpeedTouch™ during the Phase 1 negotiation
with the remote Security Gateway. This identity must match the settings in the
remote Security Gateway in order to successfully set up the IKE Security
Association. The identity types supported in the SpeedTouch™ are listed in
the table below.



Remote ID Type and Remote ID:
The Remote ID identifies the remote Security Gateway during the Phase 1
negotiation. This identity must match the settings in the remote Security
Gateway in order to successfully set up the IKE Security Association. The
identity types supported in the SpeedTouch™ are listed in the table below.

Page layout for

certificate

authentication

When you click Use Certificate Authentication, the IKE Authentication area of the
page is updated in the following way:

IKE Authentication:

Certificate parameters

When you select Use Certificate Authentication, you have to fill out the
Distinguished Name of the local and remote Certificates.

Identity type

Keyword

Examples

IP address

addr

10.0.0.1

Fully qualified domain name

fqdn

sales.corporate.net

User fully qualified domain
name

userfqdn

john.doe@corporate
.net

Distinguished name

dn

dc=corpor,uid=user

Key identity

keyid

myid

If you encounter problems during the IKE negotiations, use the Debug >
Logging page to verify that the Identity Type and Identity of the two peer
Security Gateways correspond with each other.

Advertising
This manual is related to the following products:

620

Popular Brands
Popular manuals