Table 37. IKE settings (continued)
Name of setting Available values Comments
Encryption Algorithm
v AES
v 3DES
Choose one of 2 values.
Pseudo Random Function
v SHA-1
v AES XCBC
Choose one of 2 values.
DH Group
v 1 (768 Bits)
v 2 (1024 Bits)
v 5 (1536 Bits)
v 24 (2048 Bits)
Choose one of 4 values.
Authentication Method
v PSK v ASCII
v HEX
This mode uses a password with a
maximum length of 32 characters but
can be shorter.
v ASCII Mode
The PSK is inserted as a normal
string: “TOPSECRETKEY”.
v Hex Mode
The PSK is inserted in hexadecimal
string. Every character is represented
in 2 hex digits:
544F505345435245544B4559
T O P S E C R E T K E Y
With this mode, binary PSKs are
entered.
RSA The RSA authentication is based on
certificates that are uploaded to the
unit before this mode is used. Because
of memory limitations only one set of
certificates is used. To enable RSA, four
different certificate files are loaded.
Note: Refer to 8. Certificate Upload.
Library Authentication ID
v All
v IPv6 Address
v FQDN
v E-Mail-Address
ID value that is compared against the
peer ID.
v All
Any peer ID is accepted.
v IPv6 Address
Peer IP address is compared.
v FQDN
Peers FQDN ID is compared.
v Email Address
Peers email address is compared.
142 IBM TS3100 Tape Library and TS3200 Tape Library: Setup, Operator, and Service Guide Machine Type 3573
To Next Page
Loading...
Need help?
General
