Manualshelf

3Com Switch 8800 Family IPsec Module Configuration and Command reference Guide

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve 8116fl Redundant Switch Fabric Module
191192193194195196197198199200
200 CHAPTER 12: PKI CONFIGURATION
Displaying and debugging configuration
Using the display current-configuration command, you can view current PKI
configuration. You can enable PKI debugging to monitor and diagnose relevant
certificate implementation.
Perform the following configuration in any view.
By default, all PKI debugging is disabled.
PKI Configuration
Example
IKE Authentication with
PKI Certificate
Network requirements
IKE automatic negotiation mode is used to create a security association on the
IPsec module. The IKE authentication policy uses PKI certificate system to
authenticate identity.
Network diagram
Figure 43 Network diagram for IKE authentication with PKI certificate
Configuration procedure
3Com (IPsecModule)
# Divide VLANs.
Tabl e 215 Display and debug PKI information
Operation Command
Enable PKI debugging debugging pki { verify | request | retrieval | error }
Disable PKI debugging undo debugging pki { verify | request | retrieval | error }
Switch 8800