remote-type

crypto-map-ipsec-isakmp-instance

Configures the remote VPN client type as either None or XAuth

Supported in the following platforms:

  • Access Points — AP505i, AP510i/e, AP560i/h
  • Service Platforms — NX5500, NX7500, NX9500, NX9600, VX9000

Syntax

remote-type [none|xauth]

Parameters

remote-type [none|xauth]
remote-type [none|xauth] Specify the remote VPN‘s client type
  • none – Configures remote VPN client with No XAUTH
  • xauth – Configures remote VPN client as using XAUTH (applicable only for IKEv1). This is the default setting.

XAuth (extended authentication) provides additional authentication validation by permitting an edge device to request extended authentication information from an IPSec host. This forces the host to respond with additional authentication credentials. The edge device respond with a failed or passed message.

Example

Remote VPN client:

rfs4000-229D58(config-device-00-23-68-22-9D-58-cryptomap-test#2)#remote-type none

rfs4000-229D58(config-device-00-23-68-22-9D-58-cryptomap-test#2)#show context
 crypto map test 2 ipsec-isakmp dynamic
  peer 1 ikev1 RemoteIKEv1Peer1
  local-endpoint-ip 157.235.204.62
  pfs 14
  remote-type none
rfs4000-229D58(config-device-00-23-68-22-9D-58-cryptomap-test#2)#