Cisco Cisco ASR 5000

Crypto Template Configuration Mode Commands

identity local ▀

Command Line Interface Reference, StarOS Release 18 ▄

3031

identity local

Configures the identity of the local IPSec Client (IKE ID).

Product

All Security Gateway products

Important:

This command appears in the CLI for this release. However, it has not been qualified for use with

any current Cisco StarOS gateway products.

Privilege

Security Administrator

Syntax

identity local id-type type id name

no identity local

Resets the ID to the IP address of the interface to which the crypto template is associated (type = IPv4 or
IPv6).

id-type

type

Configures the IKE identity that the local client uses when authenticating to the gateway. Valid values are:



der-ans1-dn

: configures NAI Type DER_ASN1_DN (Distinguished Encoding Rules, ASN.1

encoding, Distinguished Name)



fqdn

: configures NAI Type ID_FQDN (Internet Fully Qualified Domain Name).



ip-addr

: configures NAI Type ID_IP_ADDR (IP Address).



key-id

: configures NAI Type ID_KEY_ID (opaque octet string).



rfc822-addr

: configures NAI Type ID_RFC822_ADDR (RFC 822 email address).

name

Specifies the identifier for the local IKE client as an alphanumeric string of 1 through 127 characters.

Usage

Use this command to configure the identity of the local IPSec Client.

Example

The following command configures the local IPSec Client.

identity local id-type der-asn1-dn id system14