Share via


IPsec Services

Applies To: Windows Server 2008 R2

The IKE and AuthIP IPsec Keying Modules (IKEEXT) service implements the Internet Key Exchange (IKE) and Authenticated Internet Protocol (AuthIP) protocols. These keying modules support the authentication and key exchange features required by Internet Protocol security (IPsec).

Aspects

The following is a list of all aspects that are part of this managed entity:

Name Description

Connection Security Rule Processing

Windows Firewall with Advanced Security receives connection security rules from local security policy stored in the system registry, and from Group Policy delivered by Active Directory. After receiving a new or modified policy, Windows Firewall must process each rule in the applied policies to interpret what network traffic is to be protected by using Internet Protocol security (IPsec).

IPsec Service Initialization

The IKE and AuthIP IPsec Keying Modules (IKEEXT) service must be running for Internet Protocol security (IPsec) to provide authentication and encryption services. This service implements the Internet Key Exchange (IKE) and Authenticated Internet Protocol (AuthIP) protocols. These keying modules support the authentication and key exchange features required by Internet Protocol security (IPsec).

When appropriate auditing events are enabled (https://go.microsoft.com/fwlink/?linkid=92666), Windows reports successes and failures in starting the service, or when the service stops operating due to a failure.

Windows Firewall with Advanced Security