cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1052
Views
0
Helpful
1
Replies

Pre-shared key on ASA

Waterbird
Level 1
Level 1

Hello. I'm trying to understand the command for configuring a pre-shared key on a ASA 5506-X.

 

So far, I've already configured my IKE Phase 1 ISAKMP policy on an ASA.  I selected the pre-share option for authentication.  

 

However, the  #crypto isakmp policy 1 command was not available for some unknown reason, so I used #crypto ikev1 policy 1 instead. 

 

The next step, in my understanding for routers at least, is if using pre-share option, I should configure this:

#crypto isakmp key cisco12345 address 172.30.2.2 (peer router ip address)

 

However, I'm on an ASA not a router, not a router, and as mentioned the usual crypto isakmp policy command is gone, but there was a cyrpto ikev1 policy command I used instead.

 

So given all of the above, what is the command I should use to configure the pre-shared key on the ASA?

 

 

 

 

1 Accepted Solution

Accepted Solutions

Hi,
You would define the IKEv1 pre-shared key under the tunnel group, e.g:-

tunnel-group 1.1.1.1 type ipsec-l2l
tunnel-group 1.1.1.1 ipsec-attributes
ikev1 pre-shared-key Cisco1234

HTH

View solution in original post

1 Reply 1

Hi,
You would define the IKEv1 pre-shared key under the tunnel group, e.g:-

tunnel-group 1.1.1.1 type ipsec-l2l
tunnel-group 1.1.1.1 ipsec-attributes
ikev1 pre-shared-key Cisco1234

HTH
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: