Cisco Systems OL-6918-01 manual First window of the Security Associations wizard contains

Page 28

Chapter 4 Using Service Manager

Activating Services on HA Devices

The first window of the Security Associations wizard contains:

Field

Description

 

 

Peer Type

Choose a peer type from the drop-down list. It can be one of the

 

following:

 

Host

 

Home Agent

 

Foreign Agent

 

 

Mobile Node Identity

Click the IP Address or Host NAI String radio button to specify

 

the NAI string or the home IP address of the mobile node.

 

 

IP Address

Click the IP Address radio button to specify the IP address of the

 

mobile node.

 

 

Lower

IP address of the host, Home Agent, Foreign Agent, or the lower

 

range of IP address pool.

 

 

Higher

(Optional) Upper range of the IP addresses pool.

 

 

Host NAI String

Specify the network access identifier of the mobile node. It is a

 

unique identifier with the syntax username@realm.

 

Click Fetch to select a NAI string from a list. A popup appears with

 

a list of NAI strings. Choose a NAI string and click Select. Click the

 

column heading to sort the list.

 

This radio button is disabled if you choose Home Agent or Foreign

 

Agent as the peer type.

 

 

Bidirectional SPI

Click the Bidirectional SPI radio button to specify the bidirectional

 

SPI. The range is from 256 to 4294967295 (decimal) or 0 to ffffffff

 

(hex).

 

 

Unidirectional SPI

Click the Unidirectional SPI radio button to specify the inbound

 

and outbound SPIs. If Home Agent receives an inbound SPI, then

 

outbound SPI will be used when sending a response.

 

 

Inbound

Select Decimal or Hex from the drop-down list and specify the SPI

 

to authenticate the inbound registration packets. The range is from

 

256 to 4294967295 (decimal) or 0 to ffffffff (hex)

 

 

Outbound

Select the format of the SPI (Decimal or Hex) from the drop-down

 

list, and specify the SPI to authenticate the outbound registration

 

packets. The range is from 256 to 4294967295 (decimal) or 0 to

 

ffffffff (hex)

 

 

Security Key

Select the format of the key (ASCII or Hex) from the drop-down

 

list, and specify the shared secret key for the security associations.

 

The key is used to wrap the registration information for

 

authentication and calculate the message digest.

 

You cannot use spaces in the string.

 

 

 

User Guide for Cisco Home Agent Service Manager

4-28

OL-6918-01

 

 

Page 27 Page 29
Image 28
Page 27 Page 29
Contents Using Service Manager Service Manager Tasks Choose HA Service Manger Service Manager Select Group Selecting an HA Device GroupUsing Service Manager Selecting an HA Device Group Displaying an HA Configuration Choose Service Manager Display ConfigGenerating Sync Reports Using Sync Report Dashboard Choose Service Manager Sync Report Sync Report DashboardChecking Device Status Generating a Diff ReportSync Report Dashboard window contains Sync Report Config Diff Viewer Interpreting the Sync Report Config Diff Viewer Comparing the Configurations of Two Devices Choose Service Manager Sync Report Compare ConfigChoose HA Service Manager Service Activation Local IP Pool Select HA Service Manager Service ActivationLocal IP Pools Configuring Local IP Pools Field Description Viewing Job Details Job Details WindowField Description Execution Summary For more information, see Configuring Virtual Networks, Working With Virtual NetworksConfiguring Virtual Networks Home Address Assignment Assigning Home Addresses With NAIConfiguring Home Addresses With NAI Home Link AAA Assigning Home Addresses Without NAI Configuring Home Addresses Without NAI Their detailsField Description Security Associations Configuring Security Associations SPIFirst window of the Security Associations wizard contains Field Description Choose HA Service Manager Service Activation HA VRF VRF Support on HAConfiguring VRF Support on HA Devices Dialog Box Field Descriptions, page 4-33, for more detailsUsing Service Manager Activating Services on HA Devices VRF Definition Dialog Box Field Descriptions Choose HA Service Manager Service Activation Hot Lining Hot-LiningEnabling Hot-Lining Managing Batch Configurations Choose Service Manager Batch ConfigStarting a Batch Configuration Click DownloadOL-6918-01
Top Page Image Contents