beautypg.com

Dell POWEREDGE M1000E User Manual

Page 404

background image

376

Fabric OS Command Reference

53-1002746-01

fipsCfg

2

To attempt enabling FIPS when prerequisites are not met:

switch:admin> fipscfg --enable fips
SelfTests mode is not enabled.
Root account is enabled.
Authentication uses MD5 hash algorithm.
Authentication uses DH group 0.
Telnet port number <23> for the policy \
is in permit state.
HTTP port number <80> for the policy \
is in permit state.
RPC port number <898> for the policy \
is in permit state.
Telnet port number <23> for the policy \
is in permit state.
HTTP port number <80> for the policy \
is in permit state.
RPC port number <898> for the policy \
is in permit state.
SNMP is not in read only mode.
Bootprom access is enabled.

FIPS mode cannot be configured at this time

To back out of a zeroizing operation:

switch:admin> fipscfg --zeroize
You are Zeroizing FIPS configuration.
Do you want to continue? (yes, y, no, n) [no]: no
Operation cancelled.

switch:admin> fipscfg --zeroize
You are Zeroizing FIPS configuration.
Do you want to continue? (yes, y, no, n) [no]: yes

Executing 'secauthsecret --remove --all':

This command deletes database of DH-CHAP secret keys.\
If a fabric requires authentication, deleting this \
database may cause switch to segment from the fabric.

Do want to remove secret key database? \
(yes, y, no, n): [no]
Operation cancelled...
Executing 'pkiremove':

WARNING!!!

Removing pki objects will impair the security functionality
of this fibre channel switch. If you want secure mode enabled,
you will need to get the switch certificate again.

About to remove Pki objects.
ARE YOU SURE (yes, y, no, n): [no]
Operation cancelled.
Executing 'passwddefault':
Password policies are already set to default.
Executing 'seccertutil delkey':

Deleting the key pair will automatically do the following: