Users Guide
• When Management Port 2 is set for Stacking but is cabled for Redundant (two connections to the TOR switch), routing
loops could cause a network storm.
Configuring Management Port 2 using RACADM
To specify Redundant operation, use racadm config –g cfgNetTuning –o cfgNetTuningNicRedundant 1
command.
To specify Stacking operation, use racadm config –g cfgNetTuning –o cfgNetTuningNicRedundant 0 command.
By default, the Management Port 2 is set for Stacking.
Federal Information Processing Standards
The agencies and contractors of the Federal government of the United States use Federal Information Processing Standards
(FIPS), a computer security standard, which is related to all applications that have communicative interfaces. The 140–2 comprises
of four levels — Level 1, Level 2, Level 3, and Level 4. The FIPS 140–2 series stipulate that all communicative interfaces must have
the following security properties:
• authentication
• confidentiality
• message integrity
• non-repudiation
• availability
• access control
If any of the properties depend on cryptographic algorithms, then FIPS must approve these algorithms.
NOTE: CMC supports enabling FIPS mode, but the feature is not validated.
By default, the FIPS mode is disabled. When you enable FIPS, the CMC is reset to the default settings. When FIPS is enabled, the
minimum key size for OpenSSL FIPS is SSH-2 RSA 2048 bits.
NOTE: You cannot update the PSU firmware when a chassis is FIPS enabled.
For more information, see CMC Online Help.
The following features/applications support FIPS.
• Web GUI
• RACADM
• WSMan
• SSH v2
• SMTP
• Kerberos
• NTP Client
• NFS
NOTE: SNMP is not FIPS-compliant. In FIPS mode, all SNMP features except Message Digest algorithm version 5
(MD5) authentication work.
Enabling FIPS Mode Using CMC Web Interface
To enable FIPS:
1. In the left pane, click Chassis Overview.
The Chassis Health page is displayed.
2. On the menu bar, click Network.
The Network Configuration page is displayed.
60