Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
 

Configure FIPS Mode on Your Device

You must establish the passwords conforming to the FIPS password requirements. When you enable FIPS mode in Junos OS on your device, you must follow the password specification guidelines, see Password Specifications and Guidelines for Junos OS in FIPS Mode.

To enable FIPS mode on your device:

  1. Zeroize the device to delete all CSPs before enabling FIPS mode. See Zeroize the System to Clear System Data for FIPS Mode.
  2. After the device comes up in Amnesiac mode, log in using the username root and password "" (blank).
  3. Configure root authentication with a password of at least 10 characters.
  4. The fips-mode and jpfe-fips packages are optional for enabling FIPS. These packages are part of the Junos OS software. Use the following commands to enable the software packages:
  5. Configure the chassis boundary.
  6. Commit the configuration.
  7. Reboot the device.

    After rebooting the device, the system performs the FIPS self-tests and enters the FIPS mode.