No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search


To have a better experience, please upgrade your IE browser.


AR500, AR510, and AR530 V200R007 Commands Reference

This document describes all the configuration commands of the device, including the command function, syntax, parameters, views, default level, usage guidelines, examples, and related commands.

Rate and give feedback:
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).



The pre-shared-key command sets a pre-shared key for pre-shared key authentication.

The undo pre-shared-key command deletes the pre-shared key for pre-shared key authentication.

By default, no pre-shared key is configured on IKE peers.


pre-shared-key { simple | cipher } key

undo pre-shared-key






Indicates the pre-shared key in plain text. The pre-shared key is displayed in plain text in the configuration file.


If simple is selected, the password is saved in the configuration file in plain text. This brings security risks. It is recommended that you select cipher to save the password in cipher text.



Indicates the pre-shared key in cipher text. You can enter a pre-shared key in plain text or cipher text, but the pre-shared key is displayed in cipher text in the configuration file.



Specifies the pre-shared key for pre-shared key authentication.

The value is a string of 1 to 127 characters. The length of the encrypted cipher text ranges from 32 to 200. The value is a case-sensitive character string without question marks (?) or spaces.

To improve security, it is recommended that the pre-shared key contains at least two types of lowercase letters, uppercase letters, digits, and special characters, and contains at least 6 characters.


IKE peer view, Efficient VPN policy view

Default Level

2: Configuration level

Usage Guidelines

Pre-configuration Tasks

Pre-shared key authentication has been specified in an IKE proposal or in an Efficient VPN policy.


Both ends of IKE negotiation must be configured with the same pre-shared key.


# Set the pre-shared key of the IKE peer huawei to huawei@123 in cipher text.

<Huawei> system-view
[Huawei] ike peer huawei v1
[Huawei-ike-peer-huawei] pre-shared-key cipher huawei@123

# Configure pre-shared key authentication in the Efficient VPN policy evpn and set the pre-shared key to huawei@123 in cipher text.

<Huawei> system-view
[Huawei] ipsec efficient-vpn evpn mode client
[Huawei-ipsec-efficient-vpn-evpn] authentication-method pre-share
[Huawei-ipsec-efficient-vpn-evpn] pre-shared-key cipher huawei@123
Updated: 2019-05-29

Document ID: EDOC1000097293

Views: 135283

Downloads: 148

Average rating:
This Document Applies to these Products

Related Version

Related Documents

Previous Next