HP Secure Key Manager User Manual

Page 271

Advertising
background image

Syntax

hostname# show security settings
Key Security
Disable Creation and Use of Global Keys:

Yes

Disable Non-FIPS Algorithms and Key Sizes:

Yes

Disable RSA Encryption and Decryption:

Yes

Device Security
Disable FTP for Certificate Import, Backup, and Restore:

Yes

Disable Certificate Import through Serial Console Paste:

Yes

Disable Hotswappable RAID Drives:

Yes

Other Security
Allow Key & Policy Configuration Operations:

Disabled

(FIPS-compliant)
Allow Key Export:

Disabled (FIPS-compliant)

User Directory for KMS Server:

Local (FIPS-compliant)

Allowed SSL Protocols:

TLS 1.0 (FIPS-compliant)

Enabled SSL Ciphers:

Only FIPS-compliant ciphers

Related

command(s)

security settings

show fips server – view the status of the FIPS Status Server and its IP and port.

Syntax

hostname# show fips server
Enable FIPS Status Server:

Yes

Local IP:

[All]

Local Port:

9081

You can view the FIPS Status Report by accessing http://<Local IP>:<Local

Port>/status.html.

Related

command(s)

fips server

show fips status – view if the device is FIPS-compliant.

Syntax

hostname# show fips status
FIPS Compliant:

No

Related

command(s)

fips compliant

Secure Key Manager

271

Advertising
See also other documents in the category HP Storage: