Using a key pair and preinstalled CA certicates for authentication
1
Click the [Digital Signature Method] radio button for [Authentication Method] and then click [Key and
Certicate].
2
Click [Register Default Key] on the right of a key pair you want to use.
Viewing details of a key pair or certicate
● You can check the details of the certicate or verify the certicate by clicking the corresponding text
link under [Key Name], or the certicate icon.
Verifying Key Pairs and Digital Certicates(P. 266)
3
Specify the [Valid for] and [Authentication]/[Encryption]/[DH Group] settings.
10
Specify the IPSec Network Settings.
[Use PFS]
Select the check box to enable Perfect Forward Secrecy (PFS) for IPSec session keys. Enabling PFS enhances
the security while increasing the load on the communication. Make sure that PFS is also enabled for the other
devices.
[Specify by Time]/[Specify by Size]
Set the conditions for terminating a session for IPSec SA. IPSec SA is used as a communication tunnel. Select
either or both of the check boxes as necessary. If both check boxes are selected, the IPSec SA session is
terminated when either of the conditions has been satised.
[Specify by Time]
Enter a time in minutes to specify how long a session lasts.
[Specify by Size] Enter a size in megabytes to specify how much data can be transported in a session.
Security
245
To Next Page
Loading...
