- Community Home
- >
- Servers and Operating Systems
- >
- HPE BladeSystem
- >
- BladeSystem - General
- >
- c7000 OA FIPS mode settings
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-03-2022 01:17 AM - last edited on 01-06-2022 05:54 PM by support_s
01-03-2022 01:17 AM - last edited on 01-06-2022 05:54 PM by support_s
c7000 OA FIPS mode settings
In the production system, current FIPS status is OFF. I want to turn it ON to enforce strong communication.
OA user guide stated that to work on FIPS, need to clear VC settings first.
Question - I back up the VC configuration under FIPS OFF. When I clear the VC settings and turn on FIPS, and restore back the VC configuration. Will it work?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-05-2022 12:57 AM - last edited on 11-02-2022 09:34 PM by Sunitha_Mod
01-05-2022 12:57 AM - last edited on 11-02-2022 09:34 PM by Sunitha_Mod
Re: c7000 OA FIPS mode settings
Hello,
Please do refer the below guide. You might have to re-configure the VC domain.
https://support.hpe.com/hpesc/public/docDisplay?docLocale=en_US&docId=a00112728en_us
However, you can try restoring using the VC CLI. [refer page 25]
https://support.hpe.com/hpesc/public/docDisplay?docId=a00102213en_us&docLocale=en_US
When creating a VCM backup file it is also recommended to create a human readable VCM configuration file (in VC CLI run the command SHOW ALL *).
Thanks.
[Any personal opinions expressed are mine, and not official statements on behalf of Hewlett Packard Enterprise]
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-19-2022 05:03 AM
01-19-2022 05:03 AM
Re: c7000 OA FIPS mode settings
Hi ManBha
You are right that in switching FIPS mode, need to manual setup through reconfiguration of the VC domain
I read the HPE Virtual Connect for c-Class BladeSystem User Guide in Appendix D, a section on FIPS mode information and guidelines that states clearly VC domain configuration file backed up in non-FIPS mode cannot be used in FIPS-enabled domain and vice versa..
Currently my customer c7000 OA is in non-FIPS mode (default setup), and now in production. The Nessus scan detected the OA using weak cipher and insecure SSL.
My customer wants to know if upgrade to higher firmware version can mitigate the vulnerabilities without wiping the VC domain configuration through changing FIPS mode..
Any feedback is very much appreciated.