No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search

Reminder

To have a better experience, please upgrade your IE browser.

upgrade

AR500, AR510, and AR530 V200R007 Commands Reference

This document describes all the configuration commands of the device, including the command function, syntax, parameters, views, default level, usage guidelines, examples, and related commands.
Rate and give feedback :
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
pre-shared-key

pre-shared-key

Function

The pre-shared-key command sets a pre-shared key for pre-shared key authentication.

The undo pre-shared-key command deletes the pre-shared key for pre-shared key authentication.

By default, no pre-shared key is configured on IKE peers.

Format

pre-shared-key { simple | cipher } key

undo pre-shared-key

Parameters

Parameter

Description

Value

simple

Indicates the pre-shared key in plain text. The pre-shared key is displayed in plain text in the configuration file.

NOTICE:

If simple is selected, the password is saved in the configuration file in plain text. This brings security risks. It is recommended that you select cipher to save the password in cipher text.

-

cipher

Indicates the pre-shared key in cipher text. You can enter a pre-shared key in plain text or cipher text, but the pre-shared key is displayed in cipher text in the configuration file.

-

key

Specifies the pre-shared key for pre-shared key authentication.

The value is a string of 1 to 127 characters. The length of the encrypted cipher text ranges from 32 to 200. The value is a case-sensitive character string without question marks (?) or spaces.

NOTICE:
To improve security, it is recommended that the pre-shared key contains at least two types of lowercase letters, uppercase letters, digits, and special characters, and contains at least 6 characters.

Views

IKE peer view, Efficient VPN policy view

Default Level

2: Configuration level

Usage Guidelines

Pre-configuration Tasks

Pre-shared key authentication has been specified in an IKE proposal or in an Efficient VPN policy.

Precautions

Both ends of IKE negotiation must be configured with the same pre-shared key.

Example

# Set the pre-shared key of the IKE peer huawei to huawei@123 in cipher text.

<Huawei> system-view
[Huawei] ike peer huawei v1
[Huawei-ike-peer-huawei] pre-shared-key cipher huawei@123

# Configure pre-shared key authentication in the Efficient VPN policy evpn and set the pre-shared key to huawei@123 in cipher text.

<Huawei> system-view
[Huawei] ipsec efficient-vpn evpn mode client
[Huawei-ipsec-efficient-vpn-evpn] authentication-method pre-share
[Huawei-ipsec-efficient-vpn-evpn] pre-shared-key cipher huawei@123
Translation
Download
Updated: 2019-05-29

Document ID: EDOC1000097293

Views: 50399

Downloads: 102

Average rating:
This Document Applies to these Products
Related Documents
Related Version
Share
Previous Next