Cisco Community
English
Register
Great changes are coming to Cisco Community in July. LEARN MORE
Register
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

1462
Views
0
Helpful
3
Replies
dsmhospital
Beginner
Beginner
‎02-09-2010 12:15 PM
‎02-09-2010 12:15 PM

oak_conf_xauth

I've created a VPN on a PIX 515e (6.3).  When I telnet to the server on the remote network I get the "oak_conf_xauth" state when I sh isakmp sa.  The isakmp entry is: isakmp key ******** address xxx.xxx.xxx.xxx netmask 255.255.255.255 no-xauth no-config-mode.  I know the peer address and key are correct.

I've never seen this error message before, and there are no solutions on the Internet that I can find that adequately describes the message. Can anyone give me a concise explanation of what this error message means?

Labels:
0 Helpful
3 REPLIES 3
sachinraja
Engager
Engager
‎02-09-2010 01:17 PM
‎02-09-2010 01:17 PM

Hi

what version of OS are you running on your security appliance  ? Is it a site-to-site VPN to another cisco device ?

since you have already given no-xauth & no-config-mode, it shouldnt authenticate further.. Try clearing the ISAKMP SA, to renegotiate parameters between the end points.. what is the state on other side of the VPN end point ? clear isakmp sa..  or you can probably remove the tunnel and recreate, which could sometimes solve this issue.. did u do you a debug crypto isakmp ? did it give you any indications ?


Hope this helps.. all the best

Raj

0 Helpful