crypto-ikev1/ikev2-peer commands

Configures a IKEv1/IKEV2 peer‘s remote identity. This remote identifier is used with this peer configuration for an IKE exchange with the target VPN IPSec peer.

Supported in the following platforms:

  • Access Points — AP505i, AP510i/e, AP560i/h
  • Service Platforms — NX5500, NX7500, NX9500, NX9600, VX9000


remoteid [address <IP>|dn <WORD>|email <WORD>|fqdn <WORD>|string <WORD>]


remoteid [address <IP>|dn <WORD>|email <WORD>|fqdn <WORD>|string <WORD>
address <IP> Configures the remote IKEv1/IKEV2 peer‘s IP address. The IP address is used as the peer‘s remote identity.
dn <WORD> Configures the remote peer‘s distinguished name. For example, "C=us ST=<state> L=<location> O=<organization> OU=<org unit>". The maximum length is 128 characters.
email <WORD> Configures the remote peer‘s e-mail address. The maximum length is 128 characters.
fqdn <WORD> Configures a peer‘s FQDN. The maximum length is 128 characters.
string <WORD> Configures a peer‘s identity string. The maximum length is 128 characters.


nx9500-6C8809(config-profile-default-rfs4000-ikev1-peer-peer1)#remoteid dn SanJose

nx9500-6C8809(config-profile-default-rfs4000-ikev1-peer-peer1)#show context
 crypto ikev1 peer peer1
  ip address
  remoteid dn SanJose
  localid email

nx9500-6C8809(config-profile-default-rfs4000-ikev1-peer-peer1)#remoteid address

nx9500-6C8809(config-profile-default-rfs4000-ikev2-peer-peer1)#show context
 crypto ikev2 peer peer1
  remoteid address