4.
To remove the CMC VLAN, disable the VLAN capabilities of the external chassis management network:
racadm config -g cfgLanNetworking -o
cfgNicVLanEnable 0
You can also remove the CMC VLAN using the following command:
racadm setniccfg -v
Configuring Virtual LAN Tag Properties for CMC Using Web Interface
To configure Virtual LAN(VLAN) for CMC using the CMC Web interface:
1.
Go to any of the following pages:
•
In the left pane, click Chassis Overview and click Network → VLAN.
•
In the left pane, click Chassis Overview → Server Overview and click Network → VLAN.
The VLAN Tag Settings page is displayed. VLAN tags are chassis properties. They remain with the chassis even when a
component is removed.
2.
In the CMC section, enable VLAN for CMC, set the priority and assign the ID. For more information about the fields, see the
Online Help.
3.
Click Apply. The VLAN tag settings are saved.
You can also access this page from the Chassis Overview → Servers → Setup → VLAN.
Federal Information Processing Standards
The agencies and contractors of the Federal government of the United States use Federal Information Processing Standards (FIPS),
a computer security standard, which is related to all applications that have communicative interfaces. The 140–2 comprises of four
levels — Level 1, Level 2, Level 3, and Level 4. The FIPS 140–2 series stipulate that all communicative interfaces must have the
following security properties:
•
authentication
•
confidentiality
•
message integrity
•
non-repudiation
•
availability
•
access control
If any of the properties depend on cryptographic algorithms, then FIPS must approve these algorithms.
By default, the FIPS mode is disabled. When FIPS is enabled, the minimum key size for OpenSSL FIPS is SSH-2 RSA 2048 bits.
NOTE: PSU firmware update is not supported when the FIPS mode is enabled in the chassis.
For more information, see CMC Online Help.
The following features/applications support FIPS.
•
Web GUI
•
RACADM
•
WSMan
•
SSH v2
•
SMTP
•
Kerberos
•
NTP Client
•
NFS
76