Red Hat Directory Server 8.0 Administrator's Guide

ManualsBrandsHP ManualsSoftwareHP-UX Red Hat Directory Server Software

431

432

433

434

435

436

437

438

439

440

Directory Server provides the following SSLv3 ciphers:

Directory

Server Name

Key Exchange Encryption

Algorithm

Symmetric Key

Bit Size

Message

Authentication

dhe_rsa_3des_shaDHE with RSA 3DES 168 SHA

dhe_rsa_des_sha DHE with RSA DES 56 SHA

dhe_dss_3des_shaDHE with DSS 3DES 168 SHA

dhe_dss_des_sha DHE with DSS DES 56 SHA

rsa_des_sha RSA DES 56 SHA

rsa_3des_sha RSA 3DES 168 SHA

rsa_fips_des_sha RSA DES 56 SHA

rsa_fips_3des_shaRSA 3DES 168 SHA

rsa_rc4_128_md5 RSA RC4 128 MD5

rsa_rc4_40_md5 RSA RC4 40 MD5

rsa_rc2_40_md5 RSA RC2 40 MD5

rsa_null_md5 RSA null (none) N/A MD5

fortezza fortezza fortezza 80 SHA

fortezza_rc4_128_shafortezza RC4 128 SHA

fortezza_null fortezza null (none) N/A SHA

Table 11.3. SSLv3 Ciphers

5.2. Selecting the Encryption Cipher

To select the ciphers for the Directory Server to use, do the following:

1. Make sure TLS/SSL is enabled for the server. For instructions on enabling TLS/SSL, see

Section 4, “Starting the Server with TLS/SSL Enabled”.

2. In the Directory Server Console, select the Configuration tab, and then select the topmost

entry in the navigation tree in the left pane.

3. Select the Encryption tab in the right pane.

This displays the current server encryption settings.

4. Click Cipher Setting.

The Cipher Preference dialog box opens.

5. In the Cipher Preference dialog box, specify which ciphers for the Directory Server to use by

selecting them from the list, and click OK.

Chapter 11. Managing SSL

414