Tripp Lite B0930042E4U Owners Manual for B093- B097- and B098-Series Console S - Page 204
FIPS Mode
View all Tripp Lite B0930042E4U manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 204 highlights
11. System Management 11.6 FIPS Mode All Tripp Lite console server models use an embedded cryptographic module that has been validated to meet the FIPS 140-2 standards. Note: The US National Institute of Standards and Technology (NIST) publishes the FIPS (Federal Information Processing Standard) series of standards. FIPS 140-1 and FIPS 140-2 are both technical standards and worldwide de-facto standards for the implementation of cryptographic modules. These standards and guidelines are issued by NIST for use government-wide. NIST develops FIPS when there are compelling Federal government requirements such as for security and interoperability and there are no acceptable industry standards or solutions. Tripp Lite advance console servers use an embedded OpenSSL cryptographic module that has been validated to meet the FIPS 140-2 standards and has received Certificate #1051. When configured in FIPS mode, all SSH, HTTPS and SDT Connector access to all services on the advanced console servers will use the embedded FIPS-compliant cryptographic module. To connect, you must also use FIPS-approved cryptographic algorithms found in your browser or client. Otherwise, the connection will fail. • Select the System: Administration menu option. • Check FIPS Mode to enable FIPS mode on boot, then check Reboot to safely reboot the console server. • Click Apply. The console server will now reboot. It will take several minutes to reconnect as secure communications with your browser are validated. When reconnected, it will display "FIPs mode: Enabled" in the banner. Note: To enable FIPS mode from the command line, login and run these commands: config -s config.system.fips=on touch /etc/config/FIPS chmod 444 /etc/config/FIPS flatfsd -b The final command saves to flash and reboots the unit. The unit will take a few minutes to boot into FIPS mode. To disable FIPS mode: config -d config.system.fips rm /etc/config/FIPS flatfsd -b 204