Binding trusted CAs to an IKE Policy

Feature(s) and their supported products/applications:

[Collapse All]

[Expand All]

You can group ca-profiles (trusted CAs) in a trusted-ca-group and or bind a specific ca-profile to an IKE policy. When a remote peer establishing a connection that matches this IKE policy, the particular ca-profile or trusted-ca-group will be used to validate the remote peer. A group of trusted CA servers can be created with the trusted-ca-group configuration statement at the [edit security pki] hierarchy level; one or multiple CA profiles can be specified. The trusted CA server is bound to the IKE policy configuration for the peer at [edit security ike policy policy certificate] hierarchy level.

Product / Application	Software	Introduced Release
vSRX	Junos OS	18.1R1
SRX300	Junos OS	18.1R1
SRX320	Junos OS	18.1R1
SRX340	Junos OS	18.1R1
SRX345	Junos OS	18.1R1
SRX380	Junos OS	20.1R1
SRX1500	Junos OS	18.1R1
SRX1600	Junos OS	23.4R1
SRX2300	Junos OS	23.4R1
SRX4100	Junos OS	18.1R1
SRX4120	Junos OS	25.2R1
SRX4200	Junos OS	18.1R1
SRX4300	Junos OS	24.2R1
SRX4600	Junos OS	18.1R1
SRX4700	Junos OS	24.4R1-S2
SRX5400	Junos OS	18.1R1
SRX5600	Junos OS	18.1R1
SRX5800	Junos OS	18.1R1

Feature Explorer AI

Binding trusted CAs to an IKE Policy

404: Page not found.

Binding trusted CAs to an IKE Policy