Greetings again. The following draft comes out of the meeting we had after the IPsec WG meeting in Atlanta. It represents the thinking of many folks about the cleanest way to do legacy authentication in IKEv2. Please read it and comment here on the list. <http://www.ietf.org/internet-drafts/draft-hoffman-sla-00.txt> --Paul Hoffman, Director --VPN Consortium