pre-shared-key

Function

The pre-shared-key command configures the authentication key used in the pre-shared key authentication method.

The undo pre-shared-key command restores the default setting.

By default, the authentication key is not set.

This command is supported only on the NetEngine 8000 F1A.

Format

pre-shared-key [ cipher ] key-string

undo pre-shared-key

Parameters

Parameter	Description	Value
cipher	Indicates that the authentication key is in ciphertext.	-
key-string	Indicates the authentication key.	The value is a string that can be letters or digits. The password can be a string of 1 to 127 characters in plain text or a string of 20 to 268 characters in encrypted text.

Parameter

Description

Value

cipher

Indicates that the authentication key is in ciphertext.

key-string

Indicates the authentication key.

The value is a string that can be letters or digits. The password can be a string of 1 to 127 characters in plain text or a string of 20 to 268 characters in encrypted text.

Views

IKE peer view

Default Level

2: Configuration level

Task Name and Operations

Task Name	Operations
ike	write

Usage Guidelines

The same authenticator should be configured on two negotiation ends.

Updating the key every 90 days is recommended.

It is recommended that the key contain uppercase letters, lowercase letters, digits, and special characters to ensure communication security.

Example

# Configure the authentication key as "1qaz@WSX" for the IKE peer named peer1.

<HUAWEI> system-view
[~HUAWEI] ike peer peer1
[*HUAWEI-ike-peer-peer1] pre-shared-key 1qaz@WSX