Display IKE Phase 1 Security Association
Use the following procedure to view the IKE Phase 1 security association.
Procedure
- In the navigation pane, expand .
- Click IKE.
- Click the SA tab.
IKE SA field descriptions
Use the data in the following table to use the
tab.
Name |
Description |
---|---|
Id |
Specifies the profile ID. |
LocalIfIndex |
Specifies the Interface Index of the local address. Only port and vlan interfaces are supported. |
LocalAddrType |
Specifies whether the local address is an IPv4 or IPv6 address. |
LocalAddr |
Specifies the address of the local peer. |
RemoteAddrType |
Specifies whether the remote address is an IPv4 or IPv6 address. |
RemoteAddr |
Specifies the address of the remote peer. |
Name |
Specifies the name given to the SA. |
AuthenticationMethod |
Specifies the proposed authentication method for the Phase 1 security association. The default authentication method is pre-shared key. |
DPDTimeout |
Specifies the Dead Peer Detection timeout in seconds. |
HashAlgorithm |
Specifies the hash algorithm negotiated for this IKE Phase 1 SA. |
EncryptionAlgorithm |
Specifies the encryption algorithm negotiated for this IKE Phase 1 SA. |
EncryptKeyLen |
Specifies the encryption key length negotiated for this IKE Phase 1 SA. |
DHGroup |
Specifies the Diffie-Hellman group negotiated for this IKE Phase 1 SA. |
ExchangeMode |
Specifies the IKE Phase 1 SA mode. |
LifetimeSeconds |
Specifies the amount of time for which an IKE Phase 1 SA can remain valid during IKE Phase 1 negotiation. A value of 0 means no the SA always remains valid. |
Status |
Specifies whether the SA is active or inactive. |
Initiator |
Specifies whether specifies the whether the SA is created by an initiator or a responder. |