4000 Router Series Fundamentals Configuration Guide

FIPS compliance

The device supports the FIPS mode that complies with NIST FIPS 140-2 requirements. Support for features,

commands, and parameters might differ in FIPS mode and non-FIPS mode. For more information about

FIPS mode, see Security Configuration Guide.

In FIPS mode, the device supports only the scheme login authentication mode, and does not support

Telnet.

Logging in through the console/AUX port locally

You can connect a terminal to the console or AUX port of the device to log in and manage the device,

as shown in Figure 12 and Figure 13. F

or the login procedure, see "Logging in through the console port

for the first device access."

Figure 12 Logging in through the console port

Figure 13 Logging in through the console or AUX port

By default, console login is enabled and does not require authentication. To improve device security,

configure the password or scheme authentication mode and assign user roles as required immediately

after you log in to the device for the first time.

By default, login through the AUX port is enabled and requires a password, but no password is

configured. To log in to the device locally through the AUX port, you must log in to the device through any

other method and configure AUX login first.

To configure console/AUX login, complete the following tasks:

Task Remarks

(Required.) Configuring login authentication:

• Disabling authentication for console/AUX login

• Configuring password authentication for console/AUX login

• Configuring scheme authentication for console/AUX login

Configure one authentication mode as

required.

In FIPS mode, the device supports only

the scheme login authentication mode.

(Optional.) Configuring common console/AUX line settings N/A

The console/AUX login configuration is effective only for users who log in after the configuration is

completed.