Enable Fips Mode - Digi IX20 User Manual

Hide thumbs Also See for IX20:

Table of Contents

System administration

The default is 792000.

5. Set leds_enabled to false to disable all LEDs on the device except for the Power LED, which

will remain lit green, indicating that the device has power:

(config)> system power leds_enabled false

If disabled, one or more LEDs will flash periodically to indicate that the device is still active.

6. Save the configuration and apply the change

(config)> save

Configuration saved.

7. Type exit to exit the Admin CLI.

Depending on your device configuration, you may be presented with an Access selection

menu. Type quit to disconnect from the device.

Enable FIPS mode

You can enable your device to be Federal Information Processing Standard (FIPS) 140-2 compliant.

With FIPs 140-2 compliance, only FIPS 140-2 cipher and MACalgorithms are available. As a result,

features like stunnel, ssh, and openvpn are limited in what they can use. For example, in FIPS mode

ssh will only offer and negotiate AES based ciphers.

When the FIPS setting is changed, the device will reboot automatically. Disabling FIPS after it has

been enabled will cause the current configuration to be erased.

1. Log into Digi Remote Manager, or log into the local Web UI as a user with full Admin access

2. Access the device configuration:

Remote Manager:

a. Locate your device as described in

b. Click the Device ID.

c. Click Settings.

d. Click to expand Config.

Local Web UI:

IX20 User Guide

Use Digi Remote Manager to view and manage your

Enable FIPSmode