Fips Compliance; Enabling Configuration Encryption; Saving The Running Configuration - HP 6125XLG Configuration Manual

Blade switch fundamentals configuration guide

Hide thumbs Also See for 6125XLG:

Layer 3 - ip routing configuration manual (492 pages)

Command reference manual (466 pages)

Configuration manual (414 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

Table of Contents

irf mac-address persistent timer

irf auto-update enable

irf link-delay 0

irf member 2 priority 1

FIPS compliance

The device supports the FIPS mode that complies with NIST FIPS 140-2 requirements. Support for features,

commands, and parameters might differ in FIPS mode and non-FIPS mode. For more information about

FIPS mode, see Security Configuration Guide.

Enabling configuration encryption

Configuration encryption enables the device to automatically encrypt a startup configuration file when it

saves the running configuration. This function provides the following methods:

•

Private key method—Only the encrypting device can decrypt the encrypted configuration file.

Public key method—Any device running the same software version as the encrypting device can

•

decrypt the encrypted configuration file.

IMPORTANT:

Do not move or copy a private-key-encrypted configuration file between IRF member devices. These

actions can cause a decryption failure because the member devices use different private keys.

To enable configuration encryption:

Step

Enter system view.

Enable configuration

encryption.

Saving the running configuration

When saving the running configuration to a configuration file, you can specify the file as a next-startup

configuration file.

If you are specifying the file as a next-startup configuration file, use one of the following methods to save

the configuration:

•

Fast mode—Use the save command without the safely keyword. In this mode, the device directly

overwrites the target next-startup configuration file. If a reboot or power failure occurs during this

process, the next-startup configuration file is lost. You must specify a new startup configuration file

after the device reboots (see

Safe mode—Use the save command with the safely keyword. Safe mode is slower than fast mode,

•

but more secure. In safe mode, the system saves configuration in a temporary file and starts

Command

system-view

configuration encrypt { private-key |

public-key }

"Specifying a next-startup configuration

Remarks

N/A

By default, configuration

encryption is disabled.

Configuration is saved

unencrypted.

file").

Table of Contents

Show Quick Links

Hide quick links:

Table of Contents

Fips Compliance; Enabling Configuration Encryption; Saving The Running Configuration - HP 6125XLG Configuration Manual

FIPS compliance

Enabling configuration encryption

Saving the running configuration

Hide quick links:

Troubleshooting

Related Manuals for HP 6125XLG

Related Content for HP 6125XLG

Table of Contents