Cisco Cisco ASR 5000
Crypto Template Configuration Mode Commands
nai ▀
Command Line Interface Reference, StarOS Release 18 ▄
3039
nai
Configures the Network Access Identifier (NAI) parameters to be used for the crypto template IDr (recipient’s identity).
Important:
This command is deprecated from 15.0 and later releases.
Product
All Security Gateway products
Privilege
Security Administrator
Syntax
nai { idr name [ id-type { der-asn1-dn | der-asn1-gn | fqdn | ip-addr | key-id | rfc822-
addr } ] | use-received-idr }
addr } ] | use-received-idr }
default nai idr
no nai { idr | use-received-idr }
default
Configures the default command
no nai idr
. As a result, the default behavior is for the PDIF-service IP
address to be sent as the IDr value of type ID_IP_ADDR.
no
no nai idr
configures the value whereby the service IP address is sent as the IDr value with the type
ID_IP_ADDR. This is the default condition.
idr
name
Specifies the name of the IDr crypto template as an alphanumeric string of 1 through 79 characters.
id-type { der-asn1-dn | der-asn1-gn | fqdn | ip-addr | key-id | rfc822-addr }
Configures the NAI IDr type parameter. If no id-type is specified, then
rfc822-addr
is assumed.
der-asn1-dn
: configures NAI Type DER_ASN1_DN (Distinguished Encoding Rules, ASN.1
encoding, Distinguished Name)
der-asn1-gn
: configures NAI Type DER_ASN1_GN (Distinguished Encoding Rules, ASN.1
encoding, General Name)
fqdn
: configures NAI Type ID_FQDN (Internet Fully Qualified Domain Name).
ip-addr
: configures NAI Type ID_IP_ADDR (IP Address).
key-id
: configures NAI Type ID_KEY_ID (opaque octet string).
rfc822-addr
: configures NAI Type ID_RFC822_ADDR (RFC 822 email address).
use-received-idr
Specifies that the received IDr be used in the crypto template.