Cisco NAC3350-PROF-K9 Hardware Installation Guide - Page 95
Manually Restarting the CAM/CAS Configuration Utility, Step 7
View all Cisco NAC3350-PROF-K9 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 95 highlights
Chapter 3 Installing the Clean Access Manager and Clean Access Server Installing the Clean Access Server Note If this prompt does not appear after you install the Cisco NAC Appliance software and restart the CAS, refer to Manually Restarting the CAM/CAS Configuration Utility, page 3-46. Step 3 If your CAS is a FIPS-compliant platform (NAC-3315 or NAC-3355) the first prompt asks if you want to initialize the on-board FIPS card (used to ensure FIPS compliant functions on the appliance). Otherwise, skip to Step 7. Do you want to initialize the fips cards? (y/n)? [y] Step 4 Choose y to enable FIPS on your appliance. The appliance automatically initializes the FIPS card and attempts to establish the security world. -- Running startup script 45drivers -- Running startup script 46exard -- Running startup script 50hardserver Security world not found Creating the security world and initializing the smart cards Next, the FIPS setup process prompts you to specify how many Smart Cards (from 1-6) you want to initialize to enable FIPS compliance on the CAS. How many cards do you want to initialize (1-6)? [1] Set ncipher card switch in i mode and press Return to continue Step 5 Enter the number of Smart Cards you want to initialize, ensure that the FIPS card operation switch on the back of the CAS is switched to "I" (for "initialize"), and press Return. Module 1, command ClearUnit: OK Create Security World: Module 1: 0 cards of 1 written Module 1 slot 0: unknown card Module 1 slot 0: - no passphrase specified - overwriting card Module #1 Slot #0: Processing ... Card writing complete. security world generated on module #1; hknso = 65cc642b8d38a1f99b58c8afa560f4d94 522d2ad Set ncipher card switch in o mode and press Return to continue Step 6 Switch the FIPS card switch back to "O" (for "operational") and press Return. Module 1, command ClearUnit: OK Card(s) check passed Do you want to continue with the rest of the NAC Server Configuration? (y/n)? [y] Step 7 When prompted, enter an IP address for the eth0 (trusted) interface of the CAS. Confirm the value when prompted, or type n and press Enter to correct the entry. Configuring the network interfaces: Please enter the IP address for the interface eth0 []: 10.201.1.20 You entered 10.201.1.20 Is this correct? (y/n)? [y] OL-20326-01 Cisco NAC Appliance Hardware Installation Guide 3-25