Ransomware attackers specifically target and attempt to destroy backup systems to increase the probability of payment. Hardening your system is critical. Please ensure you have reviewed your platform security using the Security Hardening Checklist
Cohesity

COHESITY Documentation

Explore our documentation to get started, discover products & new features, access troubleshooting guides, register sources, platforms support.

Products
Data Security Alliance
Visit Cohesity.com
Demos
Support
Blogs
Developers
Partner Portals
Cohesity Community
© 2026 Cohesity, Inc. All Rights Reserved.
Terms of Use|
Privacy Policy|
Legal|
  1. Home
  2. NetBackup and NetBackup Appliances Hardening Guide
  3. Steps to protect Access Appliance
  4. FIPS 140-2 conformance for Access Appliance
  5. Managing the FIPS mode using the command-line interface
NetBackup and NetBackup Appliances Hardening Guide

Managing the FIPS mode using the command-line interface

You can view the FIPS status and enable and disable the FIPS mode from the Access command-line interface.

Viewing FIPS status for the appliance

You can view the VxOS FIPS status for a cluster node and the FIPS status of NetBackup MSDP for each Veritas Data Deduplication server that is configured for the cluster.

To view the FIPS mode for VxOS and MSDP:

  1. Log in to the Access command-line interface as an administrator by opening an SSH session to the console IP.
  2. In the Access command-line interface, run the following command:

    system security fips show

Enabling FIPS mode

You can enable the FIPS mode for NetBackup MSDP for each Veritas Data Deduplication server that is configured for the cluster. A maximum of two Veritas Data Deduplication servers can be configured. When you enable FIPS for MSDP, all the backup and restore jobs that are in progress are terminated. After you enable the FIPS mode, restart the NetBackup services to restart the jobs.

To enable FIPS for MSDP:

  1. Log in to the Access command-line interface as an administrator by opening an SSH session to the console IP.
  2. In the Access command-line interface, run the following command:

    system security fips enable MSDP [config_name]

    config_name is the name of the deduplication server and is optional if only one deduplication server is configured for the cluster. By default the parameter value is set to vxdefault.

Disabling FIPS for MSDP:

  1. Log on to the Access command-line interface as an administrator by opening an SSH session to the console IP.
  2. In the Access command-line interface, run the following command:

    system security fips disable MSDP [config_name]

    config_name is the name of the deduplication server and is optional if only one deduplication server is configured for the cluster. By default the parameter value is set to vxdefault.

Feedback

Was this page helpful?
Previous

Disabling FIPS mode for NetBackup MSDP

Next

Managing the login banner using the UI

Feedback

Was this page helpful?