Adaptec iSA1500 User Guide - Page 179

Using CLI pfs boolean Whether to enable PFS. policy psk (local | key_host key_user [password password] key_location) policy rsa key_host key_user [password password] key_location policy x509 dn dist_name Define which authentication policy to use for this connection and get the key or certificate from a remote server. The actual format of the command depends on the type of policy selected. In all cases the key_host parameter is the host to access (FTP) to get the key or certificate and key_location the pathname of the file to get. Normally, the CLI will prompt for a password although it can be added on the command line with the password parameter. For the psk policy the unit's local PSK can be used rather than importing one from the remote end of the connection. For the x509 policy just the certificate's Distinguished Name is required. port [local port] [remote port] Define the ports on which the connection negotiations should occur. The local port defines the port to use for incoming connections and the remote port the port to use when connections are initiated by the unit. rename name Give the connection a new name. sa [attempts true | count] [margin time] [fuzz time] [rekey boolean] Set the values to do with the SA. At least one parameter must be supplied. The attempts parameter controls how many attempts will be made to establish the SA, with true meaning unlimited. The margin and fuzz parameters control when retries will occur. Both values are relative_period values. The rekey parameter determined whether rekeying will be attempted. 8-40