04-29-2003 05:55 AM - edited 03-09-2019 03:05 AM
I'm using RSA signatures for IKE authentification between two routers (encrypted nonces). Now I have configured one router to access it by using the Cisco VPN-Client 3.x, authentification by XAUTH using the local router user-database. But that does not work. When I configure it, the normal VPN connection between the routers does no longer work after a reload of the router. I know that I have to configure the parameter "no-xauth" when I use pre-shared keys to get it working, for example: "crypto isakmp key keystring address 1.1.1.1 no-xauth". Do I need to configure such an parameter also when I use signatures?
Thank you in advance.
Dirk
05-05-2003 07:03 AM
You are configuring that command as work around as it is a bug CSCdx48695. I don't think you need to configure it for signatures also.
05-05-2003 07:29 AM
Yes, but without it does not work!
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide