New-NetIPsecAuthProposal - Powershell 4.0 CmdLet

ActiveXperts Network Monitor ships with integrated Powershell scripts to monitor complex network. The scripts run out of the box
Download the ActiveXperts Network Monitor FREE version now »

New-NetIPsecAuthProposal

Short description
Creates a main mode authentication proposal that specifies a suite of authentication protocols to offer in IPsec main mode negotiations with other computers.

Syntax


Description
The New-NetIPsecAuthProposal cmdlet creates a single authentication proposal to be used in IPsec main mode 
negotiations. An authentication proposal describes a single authentication method that the computer would accept as 
valid proof of the identity of the peer. This cmdlet is also used to authenticate the identity of the local user, so 
that a peer computer would accept the proof.


Multiple network IPsec authentication proposal fields are grouped into a single network IPsec phase 1 authentication 
set or network IPsec phase 2 authentication set. Each set is a list of proposals in order of preference. A phase 1 
authentication is generally used for computer authentication, and a phase 2 authentication is used for user 
authentication or computer health certification. See the New-NetIPsecPhase1AuthSet and New-NetIPsecPhase2AuthSet 
cmdlets for more information. The authentication method, such as Kerberos v5, Certificate, or pre-shared key 
authentication, is provided by a network IPsec authentication proposal, specified through a network IPsec phase 1 
authentication set, is required for a successful main mode security association. See the Get-NetIPsecMainModeSA and 
Get-NetIPsecQuickModeSA cmdlets for more information.