Specifications
Configuring Access Point Security
6-35
Operation Mode The Phase I protocols of IKE is based on the ISAKMP identity-
protection. IKE main mode refers to the identity-protection
exchange.
• Main - Standard IKE mode for communication and key
exchange.
Local ID Type Select the type of ID to be used for the access point end of the SA.
• IP - Select IP if the local ID type is the IP address specified
as part of the tunnel.
• FQDN - Use FQDN if the local ID is a fully qualified domain
name (such as sj.motorola.com).
• UFQDN - Select UFQDN if the local ID is a user fully-qualified
email (such as johndoe@motorola.com).
Local ID Data Specify the FQDN or UFQDN based on the Local ID type assigned.
Remote ID Type Select the type of ID to be used for the access point end of the
tunnel from the Remote ID Type drop-down menu.
• IP - Select the IP option if the remote ID type is the IP address
specified as part of the tunnel.
• FQDN - Select FQDN if the remote ID type is a fully qualified
domain name (such as sj.motorola.com). The setting for this
field does not have to be fully qualified, however it must
match the setting for the Certificate Authority.
• UFQDN - Select this item if the remote ID type is a user
unqualified email address (such as johndoe@motorola.com).
The setting for this field does not have to be unqualified, it
just must match the setting of the field of the Certificate
Authority.
Remote ID Data If FQDN or UFQDN is selected, specify the data (either the qualified
domain name or the user name) in the Remote ID Data field.
IKE Authentication
Mode
Select the IKE authentication mode:
• Pre-Shared Key (PSK) - Specify an authenticating algorithm
and passcode used during authentication.
IKE Authentication
Algorithm
IKE provides data authentication and anti-replay services for the
VPN tunnel.
• SHA1 - Enables Secure Hash Algorithm. No keys are
required to be manually provided.