The /etc/inet/secret/ike.preshared file contains secret keying material that two IKE instances can use to authenticate each other. Because of the sensitive nature of this data, it is kept in the /etc/inet/secret directory, which is only
accessible by root.
Pre-shared keys are delimited by open-curly-brace ({) and close-curly-brace (}) characters. There are five name-value pairs required inside a pre-shared key:
Name | Value | Example |
localidtype | IP | localidtype IP |
remoteidtype | IP | remoteidtype IP |
localid | IP-address | localid 10.1.1.2 |
remoteid | IP-address | remoteid 10.1.1.3 |
key | hex-string | 1234567890abcdef |
Comment lines with # appearing in the first column are also legal.
Files in this format can also be used by the ikeadm(1M) command to load additional pre-shared keys into a running an in.iked(1M) process.
|