Managing the FIPS mode using the command-line interface
You can view the FIPS status and enable and disable the FIPS mode from the Access command-line interface.
You can view the VxOS FIPS status for a cluster node and the FIPS status of NetBackup MSDP for each Veritas Data Deduplication server that is configured for the cluster.
To view the FIPS mode for VxOS and MSDP:
- Log in to the Access command-line interface as an administrator by opening an SSH session to the console IP.
- In the Access command-line interface, run the following command:
system security fips show
You can enable the FIPS mode for NetBackup MSDP for each Veritas Data Deduplication server that is configured for the cluster. A maximum of two Veritas Data Deduplication servers can be configured. When you enable FIPS for MSDP, all the backup and restore jobs that are in progress are terminated. After you enable the FIPS mode, restart the NetBackup services to restart the jobs.
To enable FIPS for MSDP:
- Log in to the Access command-line interface as an administrator by opening an SSH session to the console IP.
- In the Access command-line interface, run the following command:
system security fips enable MSDP [config_name]
config_name is the name of the deduplication server and is optional if only one deduplication server is configured for the cluster. By default the parameter value is set to vxdefault.
Disabling FIPS for MSDP:
- Log on to the Access command-line interface as an administrator by opening an SSH session to the console IP.
- In the Access command-line interface, run the following command:
system security fips disable MSDP [config_name]
config_name is the name of the deduplication server and is optional if only one deduplication server is configured for the cluster. By default the parameter value is set to vxdefault.