[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

ISAKMP & IPSEC DOI Drafts - Notify Payload - Certificate Authorities

To: "'ipsec@tis.com'" <ipsec@tis.com>
Subject: ISAKMP & IPSEC DOI Drafts - Notify Payload - Certificate Authorities
From: Greg Carter <carterg@entrust.com>
Date: Wed, 27 Nov 1996 15:50:35 -0500
Cc: "'isakmp-oakley@cisco.com'" <isakmp-oakley@cisco.com>
Sender: owner-ipsec@ex.tis.com

Questions on ISAKMP draft:

Can Notify Payloads be sent in any exchange or are they valid only in
Informational Exchanges?

What action should be taken when a Notify Payload is received and the
Message Type is not known.  i.e. My ISAKMP server is using some of the
private Message Types to exchange Environment information, but the peer
ISAKMP server has no concept of this info (and hence the private message
types).

Section 3.10 Certificate Request Payload of ISAKMP - draft 6

For the Certificate Authorities field it references the IPSEC DOI
document, however I couldn't find any reference to 'Distinguished Name
Attribute Type' value in the IPSEC DOI doc.

Could someone expand on this?

Thanks.
----
Greg Carter
Nortel Secure Networks - Entrust
carterg@entrust.com

Prev by Date: Re: replay counter size
Next by Date: Re: AH (without ESP) on a secure gateway
Prev by thread: Re: replay counter size
Next by thread: Certificate Request Payload
Index(es):
- Main
- Thread