authentication keychain (cusp-forwarder view)

Function

The authentication keychain command configures keychain authentication for a CUSP connection.

The undo authentication keychain command deletes keychain authentication configured for a CUSP connection.

By default, keychain authentication is disabled for a CUSP connection.

This command is supported only on the NetEngine 8000 F1A.

Format

authentication keychain keychain-name

undo authentication keychain keychain-name

undo authentication keychain

Parameters

Parameter Description Value
keychain-name

Specifies a keychain name.

The value is a string of 1 to 47 case-insensitive characters, spaces not supported.

Views

CUSP-forwarder view

Default Level

2: Configuration level

Task Name and Operations

Task Name Operations
cusp-agent write

Usage Guidelines

Usage Scenario

Keychain authentication can be configured for a CUSP connection to be established, which improves network security and defends against access of unauthorized users.

NOTE:

This command is delivered by the vBRAS-CP to the vBRAS-UP.

Prerequisites

The CUSP forwarder view has been displayed by running the cusp agent command.

Precautions

Keychain authentication configurations at both ends (controller and forwarder) of a CUSP connection must be the same; otherwise, the CUSP session is interrupted or fails to be established.

Example

# Configure keychain authentication for a CUSP connection.
<HUAWEI> system-view
[~HUAWEI] cu-controller
[~HUAWEI-cu-controller] up 1024
[~HUAWEI-cu-controller-up1024] config
[~HUAWEI-cu-controller-up1024-config] cusp agent abc
[*HUAWEI-cu-controller-up1024-config-cusp-agent-abc] authentication keychain kc1
Parent Topic: CU Connection Management Commands (CP)
Copyright © Huawei Technologies Co., Ltd.
Copyright © Huawei Technologies Co., Ltd.
Next topic >