Class ipsec:AIsakmpPhase2Pol (ABSTRACT)

Class ID:15089
Class Label: Abstract Ipsec ISAKMP Phase 2 Policy
Encrypted: false - Exportable: true - Persistent: true - Configurable: true - Subject to Quota: Disabled - Abstraction Layer: Concrete Model - APIC NX Processing: Disabled
Write Access: [admin]
Read Access: [admin]
Creatable/Deletable: derived (see Container Mos for details)
Semantic Scope: EPG
Semantic Scope Evaluation Rule: Subclasses
Monitoring Policy Source: Parent
Monitoring Flags : [ IsObservable: false, HasStats: false, HasFaults: false, HasHealth: false, HasEventRules: false ]

Holds Ipsec ISAKMP Phase 2 Policy

Naming Rules


DN FORMAT: 

                


Diagram

Super Mo: pol:Def,
Sub Mos: ipsec:IsakmpPhase2Pol, ipsec:IsakmpPhase2PolDef,


Inheritance
[V] naming:NamedObject An abstract base class for an object that contains a name.
 ├
[V] pol:Obj Represents a generic policy object.
 
 ├
[V] pol:Def Represents self-contained policy document.
 
 
 ├
[V] ipsec:AIsakmpPhase2Pol  Holds Ipsec ISAKMP Phase 2 Policy
 
 
 
 ├
[V] ipsec:IsakmpPhase2Pol 
 
 
 
 ├
[V] ipsec:IsakmpPhase2PolDef 


Events
                


Faults
                


Fsms
                


Properties Summary
Defined in: ipsec:AIsakmpPhase2Pol
hcisakmp:DhGroup
          scalar:Enum16
dhGroup  (ipsec:AIsakmpPhase2Pol:dhGroup)
           NO COMMENTS
hcipsec:EncapsulationMode
          scalar:Enum8
encapsulationMode  (ipsec:AIsakmpPhase2Pol:encapsulationMode)
           NO COMMENTS
hcipsec:EncapsulationType
          scalar:Enum8
encapsulationType  (ipsec:AIsakmpPhase2Pol:encapsulationType)
           NO COMMENTS
hcisakmp:EncrAlgo
          scalar:Enum8
encryption  (ipsec:AIsakmpPhase2Pol:encryption)
           NO COMMENTS
hcisakmp:Hash
          scalar:Enum8
hash  (ipsec:AIsakmpPhase2Pol:hash)
           NO COMMENTS
hcisakmp:LifeTime
          scalar:Uint32
lifetime  (ipsec:AIsakmpPhase2Pol:lifetime)
           NO COMMENTS
Defined in: pol:Def
naming:Descr
          string:Basic
descr  (pol:Def:descr)
           Specifies a description of the policy definition.
naming:Descr
          string:Basic
ownerKey  (pol:Def:ownerKey)
           The key for enabling clients to own their data for entity correlation.
naming:Descr
          string:Basic
ownerTag  (pol:Def:ownerTag)
           A tag for enabling clients to add their own data. For example, to indicate who created this object.
Defined in: pol:Obj
naming:Name
          string:Basic
name  (pol:Obj:name)
           Overrides:naming:NamedObject:name
           null
Defined in: naming:NamedObject
naming:NameAlias
          string:Basic
nameAlias  (naming:NamedObject:nameAlias)
           NO COMMENTS
Defined in: mo:TopProps
mo:ModificationChildAction
          scalar:Bitmask32
childAction  (mo:TopProps:childAction)
           Delete or ignore. For internal use only.
reference:BinRef dn  (mo:TopProps:dn)
           A tag or metadata is a non-hierarchical keyword or term assigned to the fabric module.
reference:BinRN rn  (mo:TopProps:rn)
           Identifies an object from its siblings within the context of its parent object. The distinguished name contains a sequence of relative names.
mo:ModificationStatus
          scalar:Bitmask32
status  (mo:TopProps:status)
           The upgrade status. This property is for internal use only.
Properties Detail

childAction

Type: mo:ModificationChildAction
Primitive Type: scalar:Bitmask32

Units: null
Encrypted: false
Access: implicit
Category: TopLevelChildAction
    Comments:
Delete or ignore. For internal use only.
Constants
deleteAll 16384u deleteAll NO COMMENTS
ignore 4096u ignore NO COMMENTS
deleteNonPresent 8192u deleteNonPresent NO COMMENTS
DEFAULT 0 --- This type is used to





descr

Type: naming:Descr
Primitive Type: string:Basic

Like: naming:Described:descr
Units: null
Encrypted: false
Access: admin
Category: TopLevelRegular
Property Validators:
    Range:  min: "0"  max: "128"
        Allowed Chars:
            Regex: [a-zA-Z0-9\\!#$%()*,-./:;@ _{|}~?&+]+
    Comments:
Specifies a description of the policy definition.



dhGroup

Type: hcisakmp:DhGroup
Primitive Type: scalar:Enum16

Like: hcisakmp:Policy:dhGroup
Units: null
Encrypted: false
Access: admin
Category: TopLevelRegular
Property Validators:
    Comments:
NO COMMENTS
Constants
0 0 No Diffie-Hellman group Diffie-Hellman group None
1 1 Diffie-Hellman group 1 (768-bit) Diffie-Hellman group 1
2 2 Diffie-Hellman group 2 (1024-bit) Diffie-Hellman group 2
5 5 Diffie-Hellman group 5 (1536-bit) Diffie-Hellman group 5
14 14 Diffie-Hellman group 14 (2048-bit) Diffie-Hellman group 14
15 15 Diffie-Hellman group 15 (3072-bit) Diffie-Hellman group 15
16 16 Diffie-Hellman group 16 (4096-bit) Diffie-Hellman group 16
19 19 Diffie-Hellman group 19 (256 bit ecp) Diffie-Hellman group 19
20 20 Diffie-Hellman group 20 (384 bit ecp) Diffie-Hellman group 20
21 21 Diffie-Hellman group 21 (521 bit ecp) Diffie-Hellman group 21
24 24 Diffie-Hellman group 24 (2048 bit, 256 bit subgroup) Diffie-Hellman group 24
DEFAULT 1(1) Diffie-Hellman group 1 (768-bit) Diffie-Hellman group 1





dn

Type: reference:BinRef

Units: null
Encrypted: false
Access: implicit
Category: TopLevelDn
    Comments:
A tag or metadata is a non-hierarchical keyword or term assigned to the fabric module.



encapsulationMode

Type: hcipsec:EncapsulationMode
Primitive Type: scalar:Enum8

Like: hcipsec:TransformSet:encapsulationMode
Units: null
Encrypted: false
Access: admin
Category: TopLevelRegular
Property Validators:
    Comments:
NO COMMENTS
Constants
tunnel 0 tunnel (datagram encapsulation) mode NO COMMENTS
transport 1 transport (payload encapsulation) mode NO COMMENTS
DEFAULT tunnel(0) tunnel (datagram encapsulation) mode NO COMMENTS





encapsulationType

Type: hcipsec:EncapsulationType
Primitive Type: scalar:Enum8

Units: null
Encrypted: false
Access: admin
Category: TopLevelRegular
Property Validators:
    Comments:
NO COMMENTS
Constants
esp 0 Encapsulation Security Protocol NO COMMENTS
DEFAULT esp(0) Encapsulation Security Protocol NO COMMENTS





encryption

Type: hcisakmp:EncrAlgo
Primitive Type: scalar:Enum8

Like: hcisakmp:Policy:encryption
Units: null
Encrypted: false
Access: admin
Category: TopLevelRegular
Property Validators:
    Comments:
NO COMMENTS
Constants
des 0 Use the DES algorithim NO COMMENTS
3des 1 Use the triple DES algorithim NO COMMENTS
aes 2 Use the AES algorithim NO COMMENTS
DEFAULT des(0) Use the DES algorithim NO COMMENTS





hash

Type: hcisakmp:Hash
Primitive Type: scalar:Enum8

Like: hcisakmp:Policy:hash
Units: null
Encrypted: false
Access: admin
Category: TopLevelRegular
Property Validators:
    Comments:
NO COMMENTS
Constants
md5 1 Message Digest 5 Message Digest 5
sha 2 Secure Hash Standard Secure Hash Standard
sha256 3 Secure Hash Standard 2 (256 bit) Secure Hash Standard 2 (256 bit)
sha384 4 Secure Hash Standard 2 (384 bit) Secure Hash Standard 2 (384 bit)
sha512 5 Secure Hash Standard 2 (512 bit) Secure Hash Standard 2 (512 bit)
DEFAULT md5(1) Message Digest 5 Message Digest 5





lifetime

Type: hcisakmp:LifeTime
Primitive Type: scalar:Uint32

Like: hcisakmp:Policy:lifetime
Units: null
Encrypted: false
Access: admin
Category: TopLevelRegular
Property Validators:
    Range:  min: (long)60l  max: (long)86400l
    Comments:
NO COMMENTS
Constants
defaultValue 28000u --- NO COMMENTS





name

Type: naming:Name
Primitive Type: string:Basic

Overrides:naming:NamedObject:name
Units: null Encrypted: false Access: admin Category: TopLevelRegular Property Validators: Range: min: "0" max: "64" Allowed Chars: Regex: [a-zA-Z0-9_.:-]+
    Comments:
null



nameAlias

Type: naming:NameAlias
Primitive Type: string:Basic

Units: null
Encrypted: false
Access: admin
Category: TopLevelRegular
Property Validators:
    Range:  min: "0"  max: "63"
        Allowed Chars:
            Regex: [a-zA-Z0-9_.-]+
    Comments:
NO COMMENTS



ownerKey

Type: naming:Descr
Primitive Type: string:Basic

Units: null
Encrypted: false
Access: admin
Category: TopLevelRegular
Property Validators:
    Range:  min: "0"  max: "128"
        Allowed Chars:
            Regex: [a-zA-Z0-9\\!#$%()*,-./:;@ _{|}~?&+]+
    Comments:
The key for enabling clients to own their data for entity correlation.



ownerTag

Type: naming:Descr
Primitive Type: string:Basic

Units: null
Encrypted: false
Access: admin
Category: TopLevelRegular
Property Validators:
    Range:  min: "0"  max: "64"
        Allowed Chars:
            Regex: [a-zA-Z0-9\\!#$%()*,-./:;@ _{|}~?&+]+
    Comments:
A tag for enabling clients to add their own data. For example, to indicate who created this object.



rn

Type: reference:BinRN

Units: null
Encrypted: false
Access: implicit
Category: TopLevelRn
    Comments:
Identifies an object from its siblings within the context of its parent object. The distinguished name contains a sequence of relative names.



status

Type: mo:ModificationStatus
Primitive Type: scalar:Bitmask32

Units: null
Encrypted: false
Access: implicit
Category: TopLevelStatus
    Comments:
The upgrade status. This property is for internal use only.
Constants
created 2u created In a setter method: specifies that an object should be created. An error is returned if the object already exists.
In the return value of a setter method: indicates that an object has been created.
modified 4u modified In a setter method: specifies that an object should be modified
In the return value of a setter method: indicates that an object has been modified.
deleted 8u deleted In a setter method: specifies that an object should be deleted.
In the return value of a setter method: indicates that an object has been deleted.
DEFAULT 0 --- This type controls the life cycle of objects passed in the XML API.

When used in a setter method (such as configConfMo), the ModificationStatus specifies whether an object should be created, modified, deleted or removed.
In the return value of a setter method, the ModificationStatus indicates the actual operation that was performed. For example, the ModificationStatus is set to "created" if the object was created. The ModificationStatus is not set if the object was neither created, modified, deleted or removed.

When invoking a setter method, the ModificationStatus is optional:
If a setter method such as configConfMo is invoked and the ModificationStatus is not set, the system automatically determines if the object should be created or modified.