Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
 

Enabling FIPS Mode

As Security Administrator, you must establish a root password conforming to the FIPS password requirements in Understanding Roles and Services for Junos OS Evolved in FIPS. When you enable FIPS mode in Junos OS Evolved on the device, you cannot configure passwords unless they meet this standard.

Local passwords are encrypted with the secure hash algorithm SHA256 or SHA512.

To enable FIPS mode in Junos OS Evolved on the device:

  1. Login to the device using root.
  2. Configure root authentication with password at least 10 characters or more.
  3. Load configuration onto device and commit new configuration. Configure Security Administrator and login with Security Administrator credentials.
  4. Configure FIPS by setting set system fips level 1 and commit.
  5. After deleting and reconfiguring CSPs, commit will go through and device needs reboot to enter FIPS mode.
  6. Reboot the device:
  7. After rebooting the device, FIPS self-tests will run and device enters FIPS mode.