Manualshelf

R0106-HP MSR Router Series Layer 3 - IP Services Command Reference(V7)

ManualsBrandsHP ManualsNetwork HardwareHP MSR3024 TAA-compliant AC Router
391392393394395396397398399400
380
ADVPN commands
VAM server commands
authentication-algorithm
Use authentication-algorithm to specify the algorithms for VAM protocol packet authentication and their
priorities.
Use undo authentication-algorithm to restore the default.
Syntax
authentication-algorithm { aes-xcbc-mac | md5 | none | sha-1 | sha-256 } *
undo authentication-algorithm
Default
SHA-1 is used for protocol packet authentication.
Views
ADVPN domain view
Predefined user roles
network-admin
mdc-admin
Parameters
aes-xcbc-mac: Uses the AES-XCBC-MAC authentication algorithm.
md5: Uses the MD5 authentication algorithm.
none: Performs no authentication.
sha-1: Uses the SHA-1 authentication algorithm.
sha-256: Uses the SHA-256 authentication algorithm.
Usage guidelines
The VAM server and client use SHA-1 during connection initialization, and use the negotiated algorithms
after connection initialization.
The authentication algorithms are specified in the descending order of priority. Newly specified
algorithms do not affect registered VAM clients. They apply to subsequently registered VAM clients.
Examples
# Specify the authentication algorithms as MD5, SHA-1, and SHA-256 in order for ADVPN domain 1.
<Sysname> system-view
[Sysname] vam server advpn-domain 1
[Sysname-vam-server-domain-1] authentication-algorithm md5 sha-1 sha-256