Table of Contents
Advertisement
NOTE: SNMP is not FIPS-compliant. In FIPS mode, all SNMP features except Message Digest algorithm version 5
(MD5) authentication work.
Enabling FIPS Mode Using CMC Web Interface
To enable FIPS:
1.
In the left pane, click Chassis Overview.
The Chassis Health page is displayed.
2.
On the menu bar, click Network.
The Network Configuration page is displayed.
3.
Under the Federal Information Processing Standards (FIPS) section, from the FIPS Mode drop-down menu, select Enabled.
A message is displayed that enabling FIPS resets CMC to the default settings.
4.
Click OK to proceed.
Enabling FIPS Mode Using RACADM
To enable FIPS mode, run the following command:
racadm config –g cfgRacTuning –o cfgRacTuneFipsModeEnable 1
.
Disabling FIPS Mode
To disable FIPS mode, reset CMC to the default factory settings.
Configuring Services
You can configure and enable the following services on CMC:
•
CMC serial console — Enable access to CMC using the serial console.
•
Web Server — Enable access to CMC web interface. Disabling the web server also disables Remote RACADM.
•
SSH — Enable access to CMC through firmware RACADM.
•
Telnet — Enable access to CMC through firmware RACADM
•
RACADM — Enable access to CMC using RACADM.
•
SNMP — Enable CMC to send SNMP traps for events.
•
Remote Syslog — Enable CMC to log events to a remote server. To use this feature, you must have an Enterprise license.
CMC includes a web server that is configured to use the industry-standard SSL security protocol to accept and transfer encrypted
data from and to clients over the Internet. The web server includes a Dell self-signed SSL Digital Certificate (Server ID), and is
responsible for accepting and responding to secure HTTP requests from clients. This service is required by the web interface and
remote RACADM CLI tool for communicating with CMC.
If the web server resets, wait at least one minute for the services to become available again. A web server reset usually happens as a
result of any of the following events:
•
Network configuration or network security properties are changed through the CMC web user interface or RACADM.
•
Web server port configuration is changed through the web user interface or RACADM.
•
CMC is reset.
•
A new SSL server certificate is uploaded.
NOTE: To modify service settings, you must have the Chassis Configuration Administrator privilege.
Remote syslog is an additional log target for CMC. After you configure the remote syslog, each new log entry generated by CMC is
forwarded to the respective destinations.
77
Hide quick links:
Advertisement
Table of Contents
Troubleshooting
