Brocade Communications Systems 8 Command Reference Manual page 361

To enable FIPS after prerequisites have been met:
Fabric OS Command Reference
53-1001764-02
Bootprom access is enabled.
FIPS mode cannot be configured at this time
switch:admin> fipscfg --enable fips
You are enabling FIPS.
Do you want to continue? (yes, y, no, n) [no] : yes
FIPS mode has been set to : Enabled
Please reboot the system
switch:admin> fipscfg --show
FIPS mode is : Enabled
To back out of a zeroizing operation:
switch:admin> fipscfg --zeroize
You are Zeroizing FIPS configuration.
Do you want to continue? (yes, y, no, n) [no]: no
Operation cancelled.
switch:admin> fipscfg --zeroize
You are Zeroizing FIPS configuration.
Do you want to continue? (yes, y, no, n) [no]: yes
Executing 'secauthsecret
This command deletes database of DH-CHAP secret keys. If a fabric requires
authentication, deleting this database may cause switch
to segment from the fabric.
Do want to remove secret key database? (yes, y, no, n): [no]
Operation cancelled...
Executing 'pkiremove':
WARNING!!!
Removing pki objects will impair the security functionality
of this fibre channel switch. If you want secure mode enabled,
you will need to get the switch certificate again.
About to remove Pki objects.
ARE YOU SURE (yes, y, no, n): [no]
Operation cancelled.
Executing 'passwddefault':
Password policies are already set to default.
All account passwords have been successfully set to factory default.
Executing 'seccertutil delkey':
Deleting the key pair will automatically do the following:
1. Delete all existing CSRs.
2. Delete all existing certificates.
3. Reset the certificate filename to none.
4. Disable secure protocols.
Continue (yes, y, no, n): [no]
Operation cancelled.
--remove --all':
2
fipsCfg
329