icon-unified.svg
Experience Center

Adding VPN Credentials

Configuring a VPN credential is one of the tasks you must complete when configuring an IPSec VPN tunnel. To learn more, see Configuring an IPSec VPN Tunnel. You can add up to 16,000 credentials. For a complete list of ranges and limits per feature, see Ranges & Limitations. You can also add or remove multiple VPN credentials by importing a CSV file.

To add a VPN credential:

  1. Go to Infrastructure > Internet & SaaS > Traffic Forwarding > VPN Credentials.
  2. Click Add VPN Credential.
  3. Choose the Authentication Type that is used to identify the peer, and configure it accordingly:
    • Managed By: If this VPN credential is being managed by an SD-WAN partner, search for and select their name from the drop-down menu. If this VPN credential is not being managed by a partner, choose Self.
    • User ID: Enter the FQDN of the peer. The FQDN can be up to 256 characters. It must be valid and cannot include special characters (e.g., <, @, [], etc.) or end in a period (e.g., safemarch.).
    • New Pre-Shared Key: Enter a pre-shared key. The pre-shared key can be up to 255 characters.
    • Confirm New Pre-Shared Key: Re-enter the pre-shared key.
    • Comments: (Optional) Enter additional notes or information.
    Close
    • IP Address: Choose the IP address of your local gateway.

    The static IP addresses that appear in the drop-down menu are the addresses that are provisioned for your organization. To learn more, see Self-Provisioning of Static IP Addresses. If you want Zscaler to provision your static IP addresses, submit them to Zscaler Support so that they can be properly added to the menu under IP Address.

    • New Pre-Shared Key: Enter the pre-shared key. The pre-shared key can be up to 255 characters.
    • Confirm New Pre-Shared Key: Re-enter the pre-shared key.
    • Comments: (Optional) Enter additional notes or information.
    Close

You can edit or delete an existing XAUTH VPN credential from the Admin Portal. However, you cannot add a new XAUTH VPN credential.

  1. Click Save and activate the change.

If you have entered a User ID, it is automatically converted to lowercase after clicking Save.

Related Articles
Understanding IPSec VPNsConfiguring an IPSec VPN TunnelAbout VPN CredentialsAdding VPN CredentialsImporting VPN Credentials from a CSV FileIPSec VPN Configuration Guide for Cisco ASA 55xxIPSec VPN Configuration Guide for Cisco 881 ISRIPSec VPN Configuration Guide for Juniper SRXIPSec VPN Configuration Guide for Juniper SSG 20IPSec VPN Configuration Guide for FortiGate FirewallIPSec VPN Configuration Guide for Palo Alto Networks FirewallIPSec VPN Configuration Guide for SonicWall TZ 350Locating the Hostnames and IP Addresses for Internet & SaaS Public Service Edges