Comprar o Renovar
Comprar o Renovar
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancelar
Activar sugerencias
La sugerencia automática le ayuda a obtener, de forma rápida, resultados precisos de su búsqueda al sugerirle posibles coincidencias mientras escribe.
Mostrando los resultados de 
Buscar en lugar de 
Quiere decir: 
cancel
Iniciar una conversación
645
Visitas
0
ÚTIL
2
Respuestas

VPN Client and IKE main mode negotiation

jsol
Level 1
Level 1

‎08-25-2005 02:12 AM - editado ‎02-21-2020 01:55 PM

Is it possible to configure the Cisco VPN client to use IKE Main Mode negotiation with pre-shared keys? And with digital certificates? If yes, how could I do it?

Etiquetas:
0 Útil
2 RESPUESTAS 2

jackko
Level 7
Level 7

el ‎08-25-2005 10:40 PM

just wondering the reason to insist the use main mode. both main and aggresive modes achieve the same result, except less steps involved with aggresive.

0 Útil

jsol
Level 1
Level 1
En respuesta a jackko

el ‎08-25-2005 11:39 PM

When a VPN is configured to use pre-shared keys and permits the VPN client to negotiate the session in aggressive mode, it sends a hash of this key in clear text, so...

The solution for this should be to deactivate the option which permits the VPN client to use aggressive mode.

This is why I'd like to know if I can force the VPN client to negotiate only in main mode.

0 Útil
Customers Also Viewed These Support Documents