Manualshelf

F3726, F3211, F3174, R5135, R3816-HP Firewalls and UTM Devices Access Control Configuration Guide-6PW100

ManualsBrandsHP ManualsComputer AccessoriesHP 7100/7200 IPsec dl Module
291292293294295296297298299300
285
16BFIPS configuration
90B
Feature and hardware compatibility
Hardware FIPS
com
atible
F1000-A-EI/F1000-S-EI Yes
F1000-E Yes
F5000 Yes
Firewall module Yes
U200-A No
U200-S No
91B
Overview
Federal Information Processing Standards (FIPS), developed by the National Institute of Standard and
Technology (NIST) of the United States, specify the security requirements for cryptographic modules. FIPS
140-2 defines four levels of security, simply named "Level 1" to "Level 4" from low to high. Currently, the
device supports Level 2.
Unless otherwise noted, FIPS in the document refers to FIPS 140-2.
92B
Configuring FIPS
252BPrerequisites
The way for using FIPS mode:
Delete all MD5-based digital certificates.
Delete the DSA key pairs that have a modulus length of less than 1024 bits and all RSA key pairs.
Enable FIPS mode.
Enable password-control function.
Configure the login user name and password. The password must comprise no less than 8
characters and must contain uppercase and lowercase letters, digits, and special characters.
Configure the login user service-type.
Save the configuration and reboot the device. After reboot, the device is working in FIPS 140-2 mode. In
CC certificate, this is equal to work according to CC standard.
253BEnabling FIPS mode
After enabling FIPS mode, you must restart the device to validate the configuration.