Must both key-id and key-string be same when authenticating?

Discussion in 'Cisco' started by worldwidestar, May 29, 2007.

  1. Hello,

    If each router is configured to use key chain to authenticate each
    other, must both key-id and key-string be same?
    For example, R1 --------------- R2.
    On R1: (key1=abc, key2=def, key3=xyz)
    On R2: (key1=xyz, key2=abc, key3=def)
    They have same key-strings, but different key-ids, Can this
    configuration be used?

    Thanks.
     
    worldwidestar, May 29, 2007
    #1
    1. Advertisements

  2. worldwidestar

    HACabrera Guest

    No, It cannot be used.

    In order for you to authenticate a peer, both key-string and key-id
    have to be the same in both peers.

    I.E.-
    R1 ---------- R2
    On R1: (key1=abc, key2=def, key3=xyz)
    On R2: (key1=abc, key2=def, key3=xyz)

    See you!!!

    HACabrera
     
    HACabrera, May 29, 2007
    #2
    1. Advertisements

  3. Thank you, HACabrera
     
    worldwidestar, May 30, 2007
    #3
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.