I have a few servers running Windows Server 2012 Datacenter and I want to protect their communications with IPsec. I have no problem setting up these policies, but I cannot figure out how to get them to use AES for the data encryption instead of 3DES. I need them to use AES because they are using 3DES now and the performance is far too low, AES is a faster algorithm and has hardware support on Intel processors.
This page http://technet.microsoft.com/en-us/library/dd125380(v=WS.10).aspx indicates that you can use AES for data encryption on Server 2012 but I cannot figure out how to set that up. I tried the group policy interface and that is obviously limited, but I also tried making custom policies through powershell but was unsuccessful there too.
Any ideas?
Thanks in advance!