Operation Manual
Management Functions
1W2X-0CF
◼ Authentication Functions
● LD
AP servers that are supported by the machine are Windows Server 2008/Server 2012 Active Directory.
● The machine communicates with LDAP servers using LDAPv3.
● UTF-8 is the supported character encoding used when the text data is transmitted between the machine and an
LDAP server.
◼ Firewall Settings
● Up to 16 IP addresses (or ranges of IP addresses) can be specied for both IPv4 and IPv6.
● The packet lters described in this section control communications over TCP, UDP, and ICMP.
● Up to 32 MAC addresses can be specied.
◼ IPSec
● IPSec that is supported by the machine conforms to RFC2401, RFC2402, RFC2406, and RFC4305.
Operating system Windows Vista/7/8/Server 2008/Server 2012
Connection mode Transport mode
Key exchange protocol
IKEv1 (main mode)
Authentication method
● Pr
e-shared key
● Digital signature
Hash algorithm
(and key length)
● HMAC-SHA1-96
● HMAC-SHA2 (256 bits or 384 bits)
Encryption algorithm
(and key length)
● 3DES-CBC
● AES-CBC (128 bits, 192 bits, or 256 bits)
Key exchange algorithm/group (and key length)
Die-Hellman (DH)
● Group 1 (768 bits)
● Group 2 (1024 bits)
● Group 14 (2048 bits)
ESP
Hash algorithm HMAC-SHA1-96
Encryption algorithm
(and key length)
● 3DES-CBC
● AES-CBC (128 bits, 192 bits, or 256 bits)
Hash algorithm/encryption algorithm (and key
length)
AES-GCM (128 bits, 192 bits, or 256 bits)
AH Hash algorithm HMAC-SHA1-96
Appendix
715