Pptp encrypt mppe – Enterasys Networks X-Pedition XSR CLI User Manual

AAA Usergroup Commands

16-96 Configuring Security

Syntax of the “no” Form

The no form unlinks a pool of addresses from a group of users:

no ip pool pool-name

Mode

Usergroup configuration: 

XSR(aaa-group)#

Example

The following example adds the IP pool denver:

XSR(config)#aaa group headquarters
XSR(aaa-group)#ip pool denver

pptp encrypt mppe

This command enables Microsoft Point‐to‐Point Encryption (MPPE) on a PPTP connection. The 
command must be added to the interface that will carry PPTP‐MPPE traffic. All Windows clients 
using MPPE require MS‐CHAP.

Syntax

pptp encrypt mppe {auto | 40 | 128}

Syntax of the “no” Form

The no form of this command disables MPPE encryption:

no pptp encrypt mppe

Default

128‐bit encryption

Mode

Usergroup configuration: 

XSR(aaa-group)#

Example

The following example enables MPPE with auto encryption:

XSR(config)#aaa group
XSR(aaa-group)#pptp encrypt mppe auto

Note: All configurable MPPE options must be identical on both tunnel endpoints.

auto

Offers 40‐ and 128‐bit encryption strength if available.

40

Only 40‐bit encryption allowed.

128

Only 128‐bit encryption allowed.