[x]

IPsec configuration commands > ah authentication-algorithm

 

 Next

ah authentication-algorithm

Syntax

In non-FIPS mode:

ah authentication-algorithm { md5 | sha1 }

undo ah authentication-algorithm

In FIPS mode:

ah authentication-algorithm sha1

undo ah authentication-algorithm

View

IPsec proposal view

Default level

2: System level

Parameters

md5: Uses MD5. This keyword is not available for FIPS mode.

sha1: Uses SHA1.

Description

Use the ah authentication-algorithm command to specify an authentication algorithm for the authentication header (AH) protocol.

Use the undo ah authentication-algorithm command to restore the default.

By default, MD5 is used in non-FIPS mode, and SHA-1 is used in FIPS mode.

Before specifying the authentication algorithm for AH, be sure to use the transform command to specify the security protocol as AH or both AH and ESP.

Related commands: ipsec proposal and transform.

Examples

# Configure IPsec proposal prop1 to use AH and SHA1.

<Sysname> system-view
[Sysname] ipsec proposal prop1
[Sysname-ipsec-proposal-prop1] transform ah
[Sysname-ipsec-proposal-prop1] ah authentication-algorithm sha1

prev

 

up

 next

IPsec configuration commands 

home

 connection-name

© Copyright 2016 Hewlett Packard Enterprise Development LP