The provides hashing, encryption and other kinds of cryptographic operations. It also contains methods for compressing and decompressing data. ds-cfg-crypto-manager top The preferred message digest algorithm for the Directory Server. Changes to this property will take effect immediately but will only affect cryptographic operations performed after the change. SHA-1 ds-cfg-digest-algorithm The preferred MAC algorithm for the Directory Server. Changes to this property will take effect immediately but will only affect cryptographic operations performed after the change. HmacSHA1 ds-cfg-mac-algorithm The preferred key length in bits for the preferred MAC algorithm. Changes to this property will take effect immediately but will only affect cryptographic operations performed after the change. 128 ds-cfg-mac-key-length The preferred cipher for the Directory Server. Changes to this property will take effect immediately but will only affect cryptographic operations performed after the change. AES/CBC/PKCS5Padding ds-cfg-cipher-transformation The preferred key length in bits for the preferred cipher. Changes to this property will take effect immediately but will only affect cryptographic operations performed after the change. 128 ds-cfg-cipher-key-length The preferred key wrapping transformation for the Directory Server. Changes to this property will take effect immediately but will only affect cryptographic operations performed after the change. RSA/ECB/OAEPWITHSHA-1ANDMGF1PADDING ds-cfg-key-wrapping-transformation Specifies the names of the SSL protocols that will be allowed for use in SSL or TLS communication. Changes to this property will take effect immediately but will only impact new SSL/TLS-based sessions created after the change. Uses the default set of SSL protocols provided by the server's JVM. ds-cfg-ssl-protocol Specifies the names of the SSL cipher suites that will be allowed for use in SSL or TLS communication. Changes to this property will take effect immediately but will only impact new SSL/TLS-based sessions created after the change. Uses the default set of SSL cipher suites provided by the server's JVM. ds-cfg-ssl-cipher-suite Specifies whether SSL/TLS is used to provide encrypted communication between two OpenDS server components. Changes to this property will take effect immediately but will only impact new SSL/TLS-based sessions created after the change. false ds-cfg-ssl-encryption