Cisco Cisco Packet Data Gateway (PDG)
3
The existing configuration inside the Crypto Template takes precedence over the new auth-method-set
defined in case same auth method is configured at both places.
defined in case same auth method is configured at both places.
configure
CA Certificate for device certificate authentication:
CA Certificate for device certificate authentication:
ca-certificate name
<
ca-name
>
pem url file:
<
ca certificate path
>
ePDG Certificate:
certificate name
<
epdg-name
>
pem url file:
<
epdg certificate path
>
private-key pem url file:
<
epdg private
key path
>
eap-profile
<
profile name
>
mode authenticator-pass-through
exit
ikev2-ikesa auth-method-set
ikev2-ikesa auth-method-set
<
list-name-1
>
authentication remote certificate
authentication local certificate
authentication local certificate
exit
ikev2-ikesa auth-method-set
<
list-name-2
>
authentication eap-profile eap1
exit
crypto template boston ikev2-subscriber
ikev2-ikesa auth-method-set list
<
list-name-2
> <
list-name-2
>
certificate
<
epdg-name
>
ca-certificate list ca-cert-name
<
ca-name
>
exit
Saving the Configuration
Save the ePDG configuration file to flash memory, an external memory device, and/or a network location
using the Exec mode command save configuration.
using the Exec mode command save configuration.
For additional information on how to verify and save configuration files, see the System Administration Guide
and the eHRPD/LTE Command Line Interface Reference.
and the eHRPD/LTE Command Line Interface Reference.
Verifying the Configuration
For additional information on how to verify and save configuration files, see the System Administration Guide
and the eHRPD/LTE Command Line Interface Reference.
and the eHRPD/LTE Command Line Interface Reference.
ePDG Administration Guide, StarOS Release 19
106
Configuring the Evolved Packet Data Gateway
Saving the Configuration