Datasheet
Configuring Access Point Security
6-45
IKE Authentication
Algorithm
IKE provides data authentication and anti-replay services for the
VPN tunnel. Select an authentication methods from the drop-down
menu.
• MD5 - Enables the Message Digest 5 algorithm requiring
128-bit (32-character hexadecimal) keys.
• SHA1 - Enables Secure Hash Algorithm 1 requiring 160-bit
(40-character hexadecimal) keys.
IKE Authentication
Passphrase
If you selected Pre-Shared Key as the authentication mode, you
must provide a key. If MD5 is the selected authentication
algorithm, provide a 32-character hexadecimal key. If SHA1 is the
selected algorithm, provide a 40-character hexadecimal key.
IKE Encryption
Algorithm
Select the encryption and authentication algorithms for the VPN
tunnel from the drop-down menu.
• DES - Uses the DES encryption algorithm requiring 64-bit
(16-character hexadecimal) keys.
• 3DES - Enables the 3DES encryption algorithm requiring 192-
bit (64-character hexadecimal) keys.
• AES 128-bit - Uses the Advanced Encryption Standard
algorithm with 128-bit (32-character hexadecimal) keys.
• AES 192-bit - Enables the Advanced Encryption Standard
algorithm with 192-bit (48-character hexadecimal) keys.
• AES 256-bit - Uses the Advanced Encryption Standard
algorithm with 256-bit (64-character hexadecimal) keys.
Key Lifetime The number of seconds the key is valid. At the end of the lifetime,
the key is renegotiated.
The
AP-5131 forces renegotiation every 3600 seconds. There is no
way to change the renegotiation value. If the IKE Lifetime is greater
than 3600, the keys still get renegotiated every 3600 seconds.