Class

NEVPNProtocolIKEv2

Settings for an IKEv2 VPN configuration.

Declaration

@interface NEVPNProtocolIKEv2 : NEVPNProtocolIPSec

Overview

Instances of this class are thread safe.

Topics

Accessing IKEv2 Security Association Parameters

IKESecurityAssociationParameters

An NEVPNIKEv2SecurityAssociationParameters object containing the parameters for the initial IKE security association to be negotiated with the IKEv2 server.

childSecurityAssociationParameters

An NEVPNIKEv2SecurityAssociationParameters object containing the parameters for the child IPSec security associations to be negotiated for each IKEv2 policy.

NEVPNIKEv2SecurityAssociationParameters

NEVPNIKEv2SecurityAssociationParameters contains parameters for an IKEv2 Security Association.

Accessing Other IKEv2 Properties

deadPeerDetectionRate

The frequency at which the IKEv2 client will run the dead peer detection algorithm.

serverCertificateIssuerCommonName

A string containing the value of the Subject Common Name field of the Certificate Authority certificate that issued the IKEv2 server's certificate.

serverCertificateCommonName

A string containing the value of the Subject Common Name field of the IKEv2 server’s certificate.

certificateType

The type of the certificate in the identity configured in identityReference or identityData.

useConfigurationAttributeInternalIPSubnet

A Boolean indicating whether or not the IKEv2 client should use the INTERNAL_IP4_SUBNET and/or INTERNAL_IP6_SUBNET attributes sent by the IKEv2 server. If this property is NO, split tunnel configurations may still be communicated via Traffic Selectors during IKE negotiation.

disableMOBIKE

A Boolean indicating whether or not MOBIKE should be disabled for the IKEv2 sessions.

disableRedirect

A Boolean indicating whether or not IKEv2 server redirects are disabled.

enablePFS

A Boolean indicating whether or not Perfect Forward Secrecy is enabled.

enableRevocationCheck

Enable revocation checking of the IKEv2 server certificate.

strictRevocationCheck

Require a "not revoked" result when checking if the certificate identifying the server is revoked.

Instance Properties

Relationships

Inherits From

See Also

VPN Configuration

NEVPNManager

An object to create and manage a Personal VPN configuration.

NEVPNProtocolIPSec

Settings for an IPsec VPN configuration.

NEVPNProtocol

Settings common to both IKEv2 and IPsec VPN configurations.

Beta Software

This documentation contains preliminary information about an API or technology in development. This information is subject to change, and software implemented according to this documentation should be tested with final operating system software.

Learn more about using Apple's beta software