Views:
If your device supports FIPS mode, you can allow management services for the device to be installed into a Federal Information Processing Standard (FIPS) Security Level 2 tamper-resistant hardware security module. When enabling FIPS mode on a supported device, review all the warning messages that display on the SMS.

Procedure

  1. Select DevicesAll Devicesdevice, and then click Device Configuration.
  2. Select FIPS Settings.
  3. Select one of the following settings.
  4. On the Device Configuration page, select FIPS Settings.
    Setting Description
    None No FIPS compliance actions or restrictions are activated on the device.
    FIPS Enabled
    The device uses cryptographic libraries certified by the National Institute of Standards and Technology to be compliant with FIPS 140-2 publication.
    You must factory reset the TPS device before you enable FIPS mode. To disable FIPS mode, you must factory reset the device.
    The following authentication settings are not supported on the TPS device:
    • RADIUS
    • TACACS+
    SNMP settings do not support MD5 and DES protocols when the TPS device is in FIPS mode. The SMS must have a 2K key installed to communicate with the TPS device in FIPS mode.
  5. Click OK.