21 Encryption and Digital Signature Settings
524
Configuration of Encryption using IPSec
This section describes how to encrypt communications using IPSec.
When the IKE authentication method is set to [Authenticate by Preshared Key], skip step 1
"Import and Configuration of a Certificate" and go to step 2 "Configuration on the Machine
(Configuration of IPSec)".
For IKE authentication methods, refer to "IKE Authentication Method" (P.377).
Step1 Import and Configuration of a Certificate...................................................................524
Step2 Configuration on the Machine (Configuration of IPSec)...........................................525
Step3 Configuration on the Computer ..................................................................................526
Installation Overview
To encrypt communications using IPSec, configure the machine and your computer as
follows:
Configuration on the Machine
When [IKE Authentication Method] is set to [Authenticate by Digital Signature], configure
a certificate on the machine. No certificate is registered on the machine by factory default.
After importing a certificate, configure IPSec.
Configure the following setting to set up a certificate on the machine.
• Configuring certificates by Dell Printer Configuration Web Tool
- Enable HTTPS, and then import a certificate issued by another CA to the machine.
Note
•
If a certificate to be imported as an IPSec certificate contains V3 extension "KeyUsage",
"digitalSignature" bit must be asserted.
Configuration on the Computer
Configure the following settings to encrypt communications between a computer and the
machine.
• Create an IP security policy
• Assign the IP security policy
Step1 Import and Configuration of a Certificate
The following describes configuration procedures to set up a certificate with Dell Printer
Configuration Web Tool.
To configure a certificate using Dell Printer Configuration Web Tool, configure the
encryption settings for HTTP communications, and then import a certificate issued by
another CA to use it for the IPSec certificate.
Note
•
You cannot use a self-signed certificate created with Dell Printer Configuration Web Tool for IPSec.
•
The machine supports the capability to import the RSA
®
public key (up to 4096 bits).
For details on how to configure the encryption settings for HTTP communication, refer to
"Configuration of HTTP Communications Encryption" (P.522).
1
Start Dell Printer Configuration Web Tool.
For more information on how to start Dell Printer Configuration Web Tool, refer to "Starting Dell
Printer Configuration Web Tool" (P.466).
2
Import a certificate.