Wireless Access Point
604
To implement FIPS 140-2, Level 2 using CLI:
For details of the settings that are enforced for FIPS Level 2, see “About FIPS
Configuration” on page 605.
1. Use the following command to check that the System Software version
running on the unit is one that has been certified for FIPS (see the Note on
page 599).
AP# show system-info
If necessary, upgrade the AP to a certified release. (See Step 3 in the
previous procedure.)
2. The following CLI commands will perform all of the settings required to
put the AP in FIPS mode.
AP# config
AP(config}# management
AP(config-mgmt}# fips on
3. You may now proceed to define SSIDs, as described in “SSIDs” on
page 227.
4. Use the fips off command if you wish to stop enforcing FIPS security
requirements on the AP.
AP(config-mgmt}# fips off
To check if AP is in FIPS mode:
You may determine whether or not the AP is running in FIPS mode.
In the WMI, open the Security > Management Control page and view the
FIPS 140-2, Level 2 Security setting.
The following steps must be performed in the order shown — you must
enable FIPS 140-2 before you create SSIDs. Otherwise, FIPS mode will
change the PSK keys of SSIDs, and you will not know what the keys are.
To Next Page
Loading...
Need help?
General
