Previous topic |
Next topic |
Contents |
Contact z/OS |
Library |
PDF
EZD1908I z/OS Communications Server: IP Messages Volume 2 (EZB, EZD) SC27-3655-01 |
|
EZD1908I Tunnel activation for stackname using
KeyExchangeRule kername failed because the identity
type is not compatible with the authentication method ExplanationAn attempt to initiate Internet Key Exchange version 2 (IKEv2) tunnel activation for a stack failed because the LocalSecurityEndpoint statement that is defined for the KeyExchangeRule statement has Identity type KeyId, but the KeyExchangeAction statement specifies a local authentication method on the HowToAuthMe parameter that is not pre-shared key. Identity type KeyId can be used only in conjunction with PresharedKey authentication. In the message text:
System actionThis tunnel activation attempt fails. IKE daemon processing continues. Operator responseContact the system programmer. System programmer responseFind the named KeyExchangeRule in the IPSec policy definitions and change the HowToAuthMe value to PresharedKey, or change the LocalSecurityEndpoint Identity to a type that is compatible with the authentication method specified on HowToAuthMe value (for example, Fqdn). User responseNot applicable. Problem determinationNot applicable. Sourcez/OS® Communications Server TCP/IP: IKE daemon Moduleanchor_ureq.cpp Routing code7 Descriptor code11 AutomationThe message is output to syslog Example
|
Copyright IBM Corporation 1990, 2014
|