Manualshelf

TMS zl Management and Configuration Guide ST.1.1.100226

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
531532533534535536537538539540
7-32
Virtual Private Networks
Configure an IPsec Client-to-Site VPN
Figure 7-12. Add IKE Policy Window—Step 2 of 3
10. Under IKE Authentication, configure the authentication method for the IKE
proposal:
a. For Key Exchange Mode, select Main Mode or Aggressive Mode.
The mode must match that configured on remote endpoints. See “IKE
modes” on page 7-16 for guidelines.
b. For Authentication Method, select one of the following:
Preshared Key
DSA Signature
RSA Signature
If you want to use SCEP to install certificates, select RSA Signature
rather than DSA Signature.
If you select DSA Signature or RSA Signature, you can go directly to
step 11. (After you finish the IKEv1 policy, you must install certificates
as described in “Install Certificates for IKE” on page 7-35.)
c. If you selected Preshared Key, type a string of 12 to 49 alphanumeric
or special characters in the Preshared Key box. Type the same string
in the Confirm Preshared Key box.