You can remove a security association using the ESXCLI command.
Prerequisites
Verify that the security association you want to use is not currently in use. If you try to remove a security association that is in use, the removal operation fails.
Procedure
- ♦ At the command prompt, enter the command esxcli network ip ipsec sa remove --sa-name security_association_name.