6.
Optional: Use the configure command to set switch to use non-signed firmware.
By keeping the switch set to use signed firmware, all firmware downloaded to the switch will have to be
signed with a key.
7.
Disable selftests by typing the following command:
fipscfg --disable selftests
8.
Disable IPFilter policies that were created to enable FIPS.
9.
Optional: Configure RADIUS server authentication protocol.
10.
Reboot the switch.
To zeroize for FIPS:
1.
Log in to the switch using an account assigned the admin or securityAdmin role.
2.
Type the command fipscfg
3.
Reboot the switch.
To display FIPS configuration:
1.
Log in to the switch using an account assigned the admin or securityAdmin role.
2.
Type the command fipscfg
zeroize.
--
showall.
--
Fabric OS 6.x administrator guide 133