427
Triggering a self-test
To examine whether the cryptography modules operate normally, you can use a command to trigger a
self-test on the cryptographic algorithms. The triggered self-test is the same as the power-up self-test.
If the self-test fails, the device automatically reboots.
To trigger a self-test:
Ste
Command
1. Enter system view.
system-view
2. Trigger a self-test.
fips self-test
Displaying and maintaining FIPS
Task Command Remarks
Display FIPS mode state. display fips status Available in any view.
FIPS configuration example
Network requirements
PC connects to Switch through a console port. Configure Switch to operate in FIPS mode and create a
local user for PC so that PC can log in to the switch.
Figure 138 Network diagram
Configuration procedure
# Enable the FIPS mode.
<Sysname> system-view
[Sysname] fips mode enable
FIPS mode change requires a device reboot. Continue?[Y/N]:y
Change the configuration to meet FIPS mode requirements, save the configuration to the
next-startup configuration file, and then reboot to enter FIPS mode.
# Enable the password control function.
[Sysname] password-control enable
To Next Page
Loading...
Need help?
General