Nortel Networks 620, 608(WL) manual IKE Authentication with Preshared Key

Chapter 3

Configuration via Local Pages

IKE Authentication with

Preshared Key

When you select Use Preshared Key Authentication, the following fields have to be completed:

Preshared Secret:

A string to be used as a secret password for the VPN connection. This secret needs to be identically configured at both peers (local and remote peer).

Confirm Secret:

The Preshared Secret value is not shown in clear text in the SpeedTouch™ Web page. In order to protect from typing errors, you have to type the key twice, in order to confirm your original entry.

Local ID Type and Local ID:

The Local ID identifies the local SpeedTouch™ during the Phase 1 negotiation with the remote Security Gateway. This identity must match the settings in the remote Security Gateway in order to successfully set up the IKE Security Association. The identity types supported in the SpeedTouch™ are listed in the table below.

Remote ID Type and Remote ID:

The Remote ID identifies the remote Security Gateway during the Phase 1 negotiation. This identity must match the settings in the remote Security Gateway in order to successfully set up the IKE Security Association. The identity types supported in the SpeedTouch™ are listed in the table below.

Page layout for certificate authentication

IKE Authentication: Certificate parameters

If you encounter problems during the IKE negotiations, use the Debug > Logging page to verify that the Identity Type and Identity of the two peer Security Gateways correspond with each other.

When you click Use Certificate Authentication, the IKE Authentication area of the page is updated in the following way:

When you select Use Certificate Authentication, you have to fill out the Distinguished Name of the local and remote Certificates.