Cisco Cisco Packet Data Gateway (PDG)
HeNB-GW Service Configuration Procedures
▀ HeNB-GW Service Configuration
▄ HeNB-GW Administration Guide, StarOS Release 17
50
exit
certificate <cert_name>
ca-certificate list ca-cert-name <cacert_name>
exit
For Simultaneous support of Multiple Authentication schemes (EAP-AKA & Certificate)
Configure
certificate name <cert_name> pem url <url format> private-key pem|der url|data <url
or data format>
or data format>
ca-cert name <cacert_name> pem|der url|data url or data format
context <ctxt_name>
eap-profile <eap_profile_name>
mode authenticator-pass-through
exit
ipsec transform-set <ipsec_transform_set_name>
exit
ikev2-ikesa transform-set <ikesa_transform_set_name>
exit
ikev2-ikesa auth-method-set <auth_profile_name1>
authentication remote eap-profile <eap_profile_name>
exit
ikev2-ikesa auth-method-set <auth_profile_name2>
authentication local certificate
authentication remote certificate
exit
crypto template <crypto_template_name> ikev2-dynamic
ikev2-ikesa auth-method-set <auth_profile_name1> <auth_profile_name2>
ikev2-ikesa transform-set list <ikesa_transform_set_name>
payload <crypto_template_payload_name> match childsa match ipv4
ipsec transform-set list <ipsec_transform_set_name>