Extended Authentication Within ISAKMP/Oakley (XAUTH)

Document Type Expired Internet-Draft (ipsec WG)
Authors Roy Pereira  , Stephane Beaulieu 
Last updated 1999-12-02
Stream Internet Engineering Task Force (IETF)
Intended RFC status (None)
Expired & archived
plain text pdf htmlized bibtex
Stream WG state WG Document
Document shepherd No shepherd assigned
IESG IESG state Expired
Consensus Boilerplate Unknown
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at


This document describes a method for using existing unidirectional authentication mechanisms such as RADIUS, SecurID, and OTP within IPSec's ISAKMP protocol. The purpose of this draft is not to replace or enhance the existing authentication mechanisms described in [IKE], but rather to allow them to be extended using legacy authentication mechanisms.


Roy Pereira (rpereira@timestep.com)
Stephane Beaulieu (sbeaulieu@timestep.com)

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)