<Encryption Settings>

Specify the settings for enhancing the effective encryption security.
For information on the items ("A", "B", "C", and "No") in the "Import All Function" column, see Import All Function.

<Prohibit Use of Weak Encryption>

 (Settings/Register)  <Management Settings>  <Security Settings>  <Encryption Settings>
Select whether to restrict the use of weak encryption, or a key and certificate with weak encryption. Management Functions
Item
Setting Description
DeviceAdmin
NetworkAdmin
Can be set in Remote UI
Import All Function
Name of Item When Exporting with the Remote UI
<Prohibit Use of Weak Encryption>
<On>, <Off>
<On> is selected:
<Prohibit Use of Key/Certificate with Weak Encryption>: <On>, <Off>
No
No
Yes
C
Settings/Registration Basic Information
This setting applies to functions such as IPSec, TLS, Kerberos, S/MIME, wireless LAN, and SNMPv3.
The machine may not be able to communicate with devices that only support weak encryption.
Even if the use of weak encryption is restricted, it may be allowed depending on the certificate (root certificate).
For information on the algorithms prohibited when this setting is set to <On>, see System Specifications.

<Format Encryption Method to FIPS 140-2>

 (Settings/Register)  <Management Settings>  <Security Settings>  <Encryption Settings>
Specify whether to make the function using encryption comply with FIPS 140-2.
Item
Setting Description
DeviceAdmin
NetworkAdmin
Can be set in Remote UI
Import All Function
Name of Item When Exporting with the Remote UI
<Format Encryption Method to FIPS 140-2>
<On>, <Off>
No
No
Yes
C
Settings/Registration Basic Information
This setting is available for TLS and AddOn applications.
This setting is only available for AddOn applications that use a FIPS provider.
For information on the algorithms prohibited when this setting is set to <On>, see System Specifications.
7XS9-0LH