No relevant resource is found in the selected language.
Enterprise
Worldwide
Huawei Global - English
Support Documentation
WLAN AC V200R010C00 Command Reference
Rate and give feedback:
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
certificate-request empty-payload enable

certificate-request empty-payload enable

Function

The certificate-request empty-payload enable command configures a wireless access controller to send certificate requests with empty payload.

The undo certificate-request empty-payload enable command restores the default configuration.

By default, certificate requests sent from a wireless access controller carries CA information in the payload.

Format

certificate-request empty-payload enable

undo certificate-request empty-payload enable

Parameters

None

Views

IKE peer view

Default Level

2: Configuration level

Usage Guidelines

Usage Scenario

When a wireless access controller acting as a gateway in the headquarters uses an IPSec policy configured using a policy template and authenticates branches by digital certificates, you can run the certificate-request empty-payload enable command to send certificate requests with empty payload, allowing access from branches using certificates issued by different CAs. The wireless access controller can then perform certificate authentication based on certificate information provided by each branch.

Precautions

Do not configure this command if access devices cannot process certificate request packets with an empty authentication and authorization field. Otherwise, IKE negotiation fails.

Example

# Configure the wireless access controller to send certificate requests with empty payload.

<AC6605> system-view
[AC6605] ike peer a20
[AC6605-ike-peer-a20] certificate-request empty-payload enable
Translation
简体中文
Download
Updated: 2021-02-27

Document ID: EDOC1100064351

Views: 3161446

Downloads: 593

Average rating:
This Document Applies to these Products

Related Version

Related Documents

Share
Previous Next
Huawei e+ App Huawei e+

Copyright © 2022 Huawei Technologies Co., Ltd. All rights reserved.

You are going to visit :