Product Manual
Product Manual
Product Manual
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
Parameter Description<br />
DES-3526 / DES-3526DC Fast Ethernet Layer 2 Switch<br />
Certificate Type Enter the type of certificate to be downloaded. This type refers to the server<br />
responsible for issuing certificates. This field has been limited to local for this firmware<br />
release.<br />
Server IP Enter the IP address of the TFTP server where the certificate files are located.<br />
Certificate File Name Enter the path and the filename of the certificate file to download. This file must have<br />
a .der extension. (Ex. c:/cert.der)<br />
Key File Name Enter the path and the filename of the key file to download. This file must have a .der<br />
extension (Ex. c:/pkey.der)<br />
Ciphersuite<br />
This window will allow the user to enable SSL on the Switch and implement any one or combination<br />
of listed ciphersuites on the Switch. A ciphersuite is a security string that determines the exact<br />
cryptographic parameters, specific encryption algorithms and key sizes to be used for an<br />
authentication session. The Switch possesses four possible ciphersuites for the SSL function, which<br />
are all enabled by default. To utilize a particular ciphersuite, disable the unwanted ciphersuites,<br />
leaving the desired one for authentication.<br />
When the SSL function has been enabled, the web will become disabled. To manage the Switch<br />
through the web based management while utilizing the SSL function, the web browser must support<br />
SSL encryption and the header of the URL must begin with https://. (Ex. https://10.90.90.90) Any<br />
other method will result in an error and no access can be authorized for the web-based management.<br />
To view the following window, click Configuration > Secure Socket Layer (SSL) > Configuration:<br />
Figure 7- 21. Ciphersuite window<br />
To set up the SSL function on the Switch, configure the following parameters and click Apply.<br />
Parameter Description<br />
RSA with RC4 128<br />
MD5<br />
RSA with 3DES EDE<br />
CBC SHA<br />
This ciphersuite combines the RSA key exchange, stream cipher RC4 encryption with<br />
128-bit keys and the MD5 Hash Algorithm. Use the pull-down menu to enable or<br />
disable this ciphersuite. This field is Enabled by default.<br />
This ciphersuite combines the RSA key exchange, CBC Block Cipher 3DES_EDE<br />
encryption and the SHA Hash Algorithm. Use the pull-down menu to enable or disable<br />
this ciphersuite. This field is Enabled by default.<br />
DHS DSS with 3DES This ciphersuite combines the DSA Diffie Hellman key exchange, CBC Block Cipher<br />
135