You can remove a security association using the ESXCLI command.

Prerequisites

Verify that the security association you want to use is not currently in use. If you try to remove a security association that is in use, the removal operation fails.

Procedure

  • At the command prompt, enter the command esxcli network ip ipsec sa remove --sa-name security_association_name.