hit counter script

Chapter 6 Fip Operation; Fips Capabilities; Using Fips Mode - Cisco CSS11501 - 100Mbps Ethernet Load Balancing Device Configuration Manual

11000 series secure content accelerator
Hide thumbs Also See for CSS11501 - 100Mbps Ethernet Load Balancing Device:
Table of Contents

Advertisement

FIPS Capabilities

FIPS Capabilities
Caution

Using FIPS Mode

Note
Cisco 11000 Series Secure Content Accelerator Configuration Guide
6-2
The Secure Content Accelerator configuration manager is used in FIPS-Compliant
Mode ("FIPS Mode") to create and configure FIPS-compliant servers. When
operating in FIPS Mode, the Secure Content Accelerator supports FIPS-compliant
security. Among the FIPS-compliant features of the Secure Content Accelerator
are the following:
Only FIPS-approved algorithms are supported (DES and 3DES with SHA).
Only FIPS-compliant servers can be used when the device is operated in FIPS
Mode. Non-FIPS 104-2-compliant servers can be configured for compliance.
Management is available only via a serial connection.
Passwords at least eight characters in length are required at both access and
configuration levels.
Commands that do not support FIPS-compliant security measures are
disabled in FIPS Mode.
The command prompt contains the text "[FIPS]" to indicate the device is
operating in FIPS Mode.
To ensure the security of SSL sessions, you must use your own keys
and certificates. The default keys and certificates preloaded on the
device are intended for testing purposes only.
A tamper-evident sticker is affixed to the Secure Content
Accelerator. When using the device for FIPS-compliant operation,
this sticker must remain in place and untouched.
Chapter 6
FIPS Operation
78-13124-05

Advertisement

Table of Contents
loading

Table of Contents