Chapter 4 Using Service Manager

Activating Services on HA Devices

The first window of the Security Associations wizard contains:

Field

Description

 

 

Peer Type

Choose a peer type from the drop-down list. It can be one of the

 

following:

 

Host

 

Home Agent

 

Foreign Agent

 

 

Mobile Node Identity

Click the IP Address or Host NAI String radio button to specify

 

the NAI string or the home IP address of the mobile node.

 

 

IP Address

Click the IP Address radio button to specify the IP address of the

 

mobile node.

 

 

Lower

IP address of the host, Home Agent, Foreign Agent, or the lower

 

range of IP address pool.

 

 

Higher

(Optional) Upper range of the IP addresses pool.

 

 

Host NAI String

Specify the network access identifier of the mobile node. It is a

 

unique identifier with the syntax username@realm.

 

Click Fetch to select a NAI string from a list. A popup appears with

 

a list of NAI strings. Choose a NAI string and click Select. Click the

 

column heading to sort the list.

 

This radio button is disabled if you choose Home Agent or Foreign

 

Agent as the peer type.

 

 

Bidirectional SPI

Click the Bidirectional SPI radio button to specify the bidirectional

 

SPI. The range is from 256 to 4294967295 (decimal) or 0 to ffffffff

 

(hex).

 

 

Unidirectional SPI

Click the Unidirectional SPI radio button to specify the inbound

 

and outbound SPIs. If Home Agent receives an inbound SPI, then

 

outbound SPI will be used when sending a response.

 

 

Inbound

Select Decimal or Hex from the drop-down list and specify the SPI

 

to authenticate the inbound registration packets. The range is from

 

256 to 4294967295 (decimal) or 0 to ffffffff (hex)

 

 

Outbound

Select the format of the SPI (Decimal or Hex) from the drop-down

 

list, and specify the SPI to authenticate the outbound registration

 

packets. The range is from 256 to 4294967295 (decimal) or 0 to

 

ffffffff (hex)

 

 

Security Key

Select the format of the key (ASCII or Hex) from the drop-down

 

list, and specify the shared secret key for the security associations.

 

The key is used to wrap the registration information for

 

authentication and calculate the message digest.

 

You cannot use spaces in the string.

 

 

 

User Guide for Cisco Home Agent Service Manager

4-28

OL-6918-01

 

 

Page 28
Image 28
Cisco Systems OL-6918-01 manual First window of the Security Associations wizard contains