How to set IKEv2 Integrity to SHA-512 in Azure Portal

ALester 1 Reputation point
2022-08-30T15:09:55.783+00:00

In the Web UI when setting up a new Connection under a Gateway, when setting the Custom properties on an IKEv2 connection, when setting Phase One Integrity, there is no option for SHA-512 even though I believe it is common for gateways to have this. The only options in the dropdown in the Web UI on Azure Portal are SHA-1, SHA-256, SHA-384, or MD5. How do I set my IKEv2 Phase One connection integrity to SHA-512?

Azure VPN Gateway
Azure VPN Gateway
An Azure service that enables the connection of on-premises networks to Azure through site-to-site virtual private networks.
1,347 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. ChaitanyaNaykodi-MSFT 21,651 Reputation points Microsoft Employee
    2022-08-30T16:50:37.557+00:00

    Hello @ALester , Thank you for reaching out.

    As per the documentation for Azure VPN I think IKEv2 integrity SHA512 is not supported. Can you please explain if there is any specific requirement to use SHA512?

    If it helps, as per the documentation here the best performance for Azure VPN is obtained when we used GCMAES256 algorithm for both IPsec Encryption and Integrity.

    Thank you!

    1 person found this answer helpful.
    0 comments No comments