In IKEv2, two IKE crypto profile values,
Key
Lifetime
and
IKEv2 Authentication Multiple
,
control the establishment of IKEv2 IKE SAs. The key lifetime is
the length of time that a negotiated IKE SA key is effective. Before
the key lifetime expires, the SA must be re-keyed; otherwise, upon
expiration, the SA must begin a new IKEv2 IKE SA re-key. The default
value is 8 hours.