Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 

How to Enable and Configure Junos OS in FIPS Mode of Operation

 

You, as Security Administrator, can enable and configure Junos OS in FIPS mode of operation on your device. Before you begin enabling and configuring FIPS mode of operation on the device:

To enable the Junos OS in FIPS mode of operation, perform the following steps:

  1. Zeroize the device before enabling FIPS mode of operation

    user@host> request system zerioze

  2. Enable the FIPS mode on the device.

    user@host# set system fips chassis level 1

  3. Set the root password.

    user@host# set system root-authentication plain-text-password.

  4. Remove the CSPs on commit check and reboot the device.

    user@host# commit

  5. After you reboot the device, perform integrity and self-test when the module is operating in FIPS mode
  6. Ensure that the backup image of the firmware is also a JUNOS-FIPS image by issuing the request system snapshot command.

The fips keyword next to the hostname in the output indicates that the module is operating in FIPS mode for Junos Software Release 19.2R1-S2.

Related Documentation