Cisco Cisco Packet Data Gateway (PDG)
Remote Secrets
CLI Commands ▀
IPSec Reference, StarOS Release 18 ▄
149
CLI Commands
Important:
The commands described below appear in the CLI for this release. However, they have not been
qualified for use with any current Cisco StarOS gateway products.
Global Configuration Mode
crypto remote-secret-list
Specifies the name of the remote secret list for storing remote secrets based on the ID type. This command sends you to
the Remote Secret List Configuration mode and the remote-id-id-type command. Only one active remote-secret-list is
supported per system.
the Remote Secret List Configuration mode and the remote-id-id-type command. Only one active remote-secret-list is
supported per system.
crypto remote-secret-listlistname
Important:
You must unbind the remote-secret-list from any crypto maps or templates before it can be deleted.
For additional information, refer to the Remote Secret List Configuration Commands chapter of the Command Line
Interface Reference and the System Administration Guide.
Interface Reference and the System Administration Guide.
remote-id id-type
Configures the remote pre-shared key based on the ID type.
remote-id id-type { der-asn1-dn | fqdn | ip-addr | key-id | rfc822-addr }
id id_value secret [ encrypted ] key key_value
id id_value secret [ encrypted ] key key_value
Context Configuration Commands
Enable remote secret list
The remote secret list must be enabled in a crypto map or crypto template.
For a crypto map the configuration sequence is:
configure
context ctxt_name
crypto map template_name { ikev2-ipv4 | ikev2-ipv6 }
remote-secret-list