| Name | Data Type | Qualifiers |
| Name | Data Type | Value | Scope | Flavors |
| AuthenticationMethod | uint16 |
| Description | string | AuthenticationMethod is an enumeration that specifies the authentication method to use for the proposal. If the value 0 (Any) is used, then the proposal should be multiplied in the IKE proposal list by as many authentication methods as correspond to credentials on the system (e.g., if the system has a preshared key and a certificate, then the proposal will be repeated twice -- once for each method). | None | TRANSLATABLE= true |
| ValueMap | string | 0, 1, 2, 3, 4, 5, 6 | None | None |
| Values | string | Any, Preshared, DSS_Signatures, RSA_Signatures, RSA_Encryption, Revised_RSA_Encryption, Kerberos | None | TRANSLATABLE= true |
| CipherAlgorithm | uint16 |
| Description | string | CipherAlgorithm is an enumeration that specifies the proposed encryption algorithm. | None | TRANSLATABLE= true |
| ValueMap | string | 1, 2, 3, 4, 5, 6 | None | None |
| Values | string | DES, IDEA, Blowfish, RC5, 3DES, CAST | None | TRANSLATABLE= true |
| GroupId | uint16 |
| Description | string | When IKEAction.ExchangeMode is set to "Base" or to "Main," the GroupId specifies the key exchange group ID to use in a proposal, otherwise, GroupId is set to 0, "Not Applicable," and ignored. If the GroupID number is from the vendor-specific range (32768-65535), the VendorID qualifies the group number. Well-known group identifiers from RFC2412 are:
0='Not Applicable', 1='DH768', 2='DH1024', 3='ECC2N155', 4='ECC2N185', and 5='DH1536' | None | TRANSLATABLE= true |
| ModelCorrespondence | string | CIM_IKEProposal.VendorID | None | None |
| HashAlgorithm | uint16 |
| Description | string | HashAlgorithm is an enumeration that specifies the proposed hash function. | None | TRANSLATABLE= true |
| ValueMap | string | 1, 2, 3 | None | None |
| Values | string | MD5, SHA-1, Tiger | None | TRANSLATABLE= true |
| LifetimeDerivedKeys | uint32 |
| Description | string | LifetimeDerivedKeys specifies the number of times a phase 1 key will be used to derive a phase 2 (IPsec) key. A value of 0 indicates that there is no limit to the number of phase 2 keys that can be derived from the phase 1 key. | None | TRANSLATABLE= true |
| MaxLifetimeKilobytes | uint32 |
| Description | string | MaxLifetimeKilobytes specifies the maximum kilobyte lifetime the IKE message sender proposes for an SA to be considered valid after it has been created. Each proposal may use a different lifetime based upon the strength of the encryption algorithm. | None | TRANSLATABLE= true |
| MaxLifetimeSeconds | uint32 |
| Description | string | MaxLifetimeSeconds specifies the maximum time the IKE message sender proposes for an SA to be considered valid after it has been created. | None | TRANSLATABLE= true |
| Units | string | Seconds | None | TRANSLATABLE= true |
| PRFAlgorithm | uint16 |
| Description | string | PRFAlgorithm specifies the pseudo-random function IKE should use. Currently, no such functions are defined. | None | TRANSLATABLE= true |
| VendorID | string |
| Description | string | The VendorID property is used to identify vendor-defined key exchange GroupIDs. | None | TRANSLATABLE= true |
| ModelCorrespondence | string | CIM_IKEProposal.GroupId | None | None |