To enable logging for IPSec, which will result in logs being written to the %systemroot%\debug\oakley.log, perform the following registry change:
1. Start the registry editor (e.g., regedit.exe).
2. Navigate to the HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\PolicyAgent registry subkey.
3. From the Edit menu, select New, Key.
4. Enter the name Oakley, then click OK.
5. Select the Oakley key, then from the Edit menu, select New, DWORD Value.
6. Enter the name EnableLogging.
7. Double-click the new value and set it to 1.
8. Close the registry editor.
9. Restart the policy agent by typing
C:\> net stop policyagent
C:\> net start policyagent
0 comments