HP Secure Key Manager User Manual
Page 271
Syntax
hostname# show security settings
Key Security
Disable Creation and Use of Global Keys:
Yes
Disable Non-FIPS Algorithms and Key Sizes:
Yes
Disable RSA Encryption and Decryption:
Yes
Device Security
Disable FTP for Certificate Import, Backup, and Restore:
Yes
Disable Certificate Import through Serial Console Paste:
Yes
Disable Hotswappable RAID Drives:
Yes
Other Security
Allow Key & Policy Configuration Operations:
Disabled
(FIPS-compliant)
Allow Key Export:
Disabled (FIPS-compliant)
User Directory for KMS Server:
Local (FIPS-compliant)
Allowed SSL Protocols:
TLS 1.0 (FIPS-compliant)
Enabled SSL Ciphers:
Only FIPS-compliant ciphers
Related
command(s)
• security settings
show fips server – view the status of the FIPS Status Server and its IP and port.
Syntax
hostname# show fips server
Enable FIPS Status Server:
Yes
Local IP:
[All]
Local Port:
9081
You can view the FIPS Status Report by accessing http://<Local IP>:<Local
Port>/status.html.
Related
command(s)
• fips server
show fips status – view if the device is FIPS-compliant.
Syntax
hostname# show fips status
FIPS Compliant:
No
Related
command(s)
• fips compliant
Secure Key Manager
271