Use this table to configure the parameters for the IKEv2 authentication.
- Name
- Contains the unique name of this entry. You can assign this name in three different places. In the Authentication section in the fields Local dig. signature profile, Rem. dig. Signature profile and under .
- Authentication method
- Sets the authentication method for the digital signature. Possible values are:
- RSASSA-PSS: RSA with improved probabilistic signature schema as per version 2.1 of PKCS #1 (probabilistic signature scheme with appendix)
- RSASSA-PKCS1-v1_5: RSA according to the older version of the signature schema as per version 1.5 of PKCS #1 (probabilistic signature scheme with appendix)
- ECDSA: Elliptic Curve Digital Signature Algorithm (ECDSA)
- EdDSA25519: Edwards Curve 2551 (EdDSA25519) as per RFC 8420
- EdDSA448: Edwards Curve 448 (EdDSA448) as per RFC 8420
Important: If RSASSA-PKCS1-v1_5 is selected, a check is made to see whether the remote site also supports the superior RSASSA-PSS method and switches to it if necessary. If RSASSA-PSS is selected, then a fallback to the older RSASSA-PKCS1-v1_5 is not provided. - You also specify the secure hash algorithms (SHA) to be used.
