Client authentication host – ADTRAN 1000R Series User Manual

Command Reference Guide

IKE Policy Command Set

61200510L1-35E

Copyright © 2005 ADTRAN

1262

client authentication host

Use the client authentication host command to enable the unit to act as an Xauth host when this IKE
policy is negotiated with a peer.

Variations of this command include the following:

client authentication host username <username>

client authentication host username <username> password <word>

client authentication host username <username> password <word> passphrase <phrase>

Syntax Description

username <username> Specifies the value sent via Xauth as the username.

password <word>

Specifies the value sent via Xauth as the password.

passphrase <phrase>

Optional. Specifies the value sent via Xauth as the passphrase. This is only used with
authentication type OTP (one time password).

Default Values

By default, if this command is not present in the IKE policy the unit does not act as an Xauth host.

Applicable Platforms

This command applies to the NetVanta 300, 1000R, 2000, 3000, 4000, and 5000 and Total Access 900
Series units.

Command History

Release 5.1

Command was introduced.

Functional Notes

The specified credentials are programmed into the unit and there is no prompt for entering values
real-time. Therefore, schemes requiring real-time input or additional responses (e.g., SecureID) are not
supported. The client authentication host command and the client authentication server commands
are mutually exclusive. Refer to

client authentication server list <listname>

on page 1264

for more

information.

Usage Examples

The following example specifies the login credentials to be sent:

(config-ike)#client authentication host username jsmith password password1 passphrase phrase