258
SSL/TLS
Validation Criteria Field Descriptions
If you choose to configure validation criteria, then the information in the peer SSL/TLS certificate
must match exactly the information configured in this window in order to pass peer authentication
and create a valid SSL/TLS connection.
Configure the following parameters:
Key Exchange The type of key to exchange for the encryption format.
Data Options:
z Any—Any key exchange that is valid is used (this does not, however,
include ADH keys).
z RSA—This is an RSA key exchange using an RSA key and certificate.
z EDH-RSA—This is an EDH key exchange using an RSA key and
certificate.
z EDH-DSS—This is an EDH key exchange using a DSA key and
certificate.
z ADH—This is an anonymous key exchange which does not require a
private key or certificate. Choose this key if you do not want to
authenticate the peer device, but you want the data encrypted on the
SSL/TLS connection.
z ECDH-ECDSA—This is an ECDH key exchange using a ECDSA key
and certificate.
Default: Any
HMAC Select the key-hashing for message authentication method for your encryption
type.
Data Options:
z Any
z MD5
z SHA1
z SHA256
z SHA384
Default: Any
Country A country code; for example, US. This field is case sensitive in order to
successfully match the information in the peer SSL/TLS certificate.
Data Options: Two characters
To Next Page
Loading...
