Konica Minolta bizhub 4750 User Manual

1.5

Available operations in Administrator mode

1

[Applied Functions]

1-31

3

Click [Edit] from [SA] on the [IPsec Settings] screen, then register the Security Association (SA).

% Up to 10 groups can be registered for the [SA].

[Encryption Key Validity
Period]

Enter a validation period of a common key used for encrypted communication.
When this period has expired, a new key is created. This can secure the com-
munication.
[28800] sec. is specified by default.

[Diffie-Hellman Group]

Select the Diffie-Hellman group.
[Group2] is specified by default.

[Negotiation Mode]

Select the method to securely generate a common key used for encrypted
communication.
This is required when [IKEv1] is selected on the [IPsec Settings] screen.
[Main Mode] is selected by default.

Item

Description

[Name]

Enter the SA name (using up to 10 characters).

[Encapsulation Mode]

Select an IPsec operation mode.
[Transport] is specified by default.

[Security Protocol]

Select a security protocol.
[AH] is specified by default.

[Key Exchange Method]

Select the key replacement method to securely create a common key used to
encrypt communications.
[IKEv1] is specified by default.

[Tunnel End Point]

Enter the IP address of the peer's IPsec gateway.
This is required when [Tunnel] is selected in [Encapsulation Mode].

[IKE Settings]

Configure IKE settings used for this SA.
This is required when [IKEv1] or [IKEv2] is selected in [Key Exchange Method].

[Authentication
Method]

Select an authentication method.
[Pre-Shared Key] is specified by default.

[Replay Detection]

Select whether or not to protect from replay attacks.
[Disable] is specified by default.

[ESN]

If you select [Enable] for [Replay Detection], select whether or not to apply ex-
tended sequence numbering for IPsec communication.
[Disable] is specified by default.

[ESP Encryption Al-
gorithm]

If you select [ESP] for [Security Protocol], configure the ESP encryption algo-
rithm.

[ESP Authentication
Algorithm]

If you select [ESP] for [Security Protocol], configure the ESP authentication al-
gorithm.

[AH Authentication
Algorithm]

If you select [AH] for [Security Protocol], configure the AH authentication algo-
rithm.

[Perfect Forward
Secrecy]

Select this check box if you wish to increase the IKE strength.
Selecting this check box increases the time spent for communication.
This option is available when [IKEv2] is selected on the [IPsec Settings] screen.

[Diffie-Hellman
Group]

Select the Diffie-Hellman group.
[Group2] is specified by default.

[Lifetime After Es-
tablishing SA]

Enter the lifetime of a common key used to encrypt communications.
[3600] sec. is specified by default.

Item

Description