Available Authentication Methods
On Cisco IOS routers, you have three ways to authenticate D-H between peers as shown in the list:
R1 (config)# crypto isakmp policy 10 R1 (config-isakmp)# authentication ?
pre-share | Preshared key |
rsa-encr | Rivest, Shamir, and Adleman encryption |
rsa-sig | Rivest, Shamir, and Adleman signature |
Our earlier IKE policy required the use of preshared keys. To implement preshared keys on R1, we would enter the following command:
R1 (config-isakmp)# authentication pre-share
Get SECUR Exam Cram™ 2 (Exam 642-501) now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.