Manualshelf

HP-UX IPSec Version A.03.00 Administrator's Guide

ManualsBrandsHP ManualsSoftwareHP-UX IPSec Software
211212213214215216217218219220
F Using Manual Keys
This appendix describes how to configure and troubleshoot manual keys for IPsec SAs. Manual
keys are an alternative to IKE. Instead of dynamically generating and distributing cryptography
keys for ESP and AH, the cryptography keys are static and manually distributed. Manual keys
are typically used only when the remote system does not support IKE. This chapter addresses
the following topics:
“Configuring Manual Key SAs” (page 216)
“Manual Key Policy Restrictions” (page 216)
“Selecting Encryption Keys” (page 216)
“Using the HP-UX Strong Random Number Generator” (page 216)
“Manual Key Configuration Example” (page 218)
“Troubleshooting Manual Key Problems” (page 219)
215