To enable FIPS mode in Junos OS Evolved on the device:
-
Login to the device using
root.
host login: root
Password:
Last login: Tue Sep 23 09:24:46 2025 from 10.223.74.168
--- JUNOS 24.4R2.18-EVO Linux (none) 5.15.142-10.22.33.14-yocto-standard-juniper-12618-gbc954d8cb562 #1 SMP PREEMPT Mon Jun 30 07:42:59 UTC 2025 x86_64 x86_64 x86_64 GNU/Linux
[vrf:none] root@host:~# cli
root@host>
-
Configure root authentication with password at least 10 characters or
more.
root@host> edit
Entering configuration mode
[edit]
root@host# set system root-authentication plain-text-password
New password:
Retype new password:
[edit]
root@host# commit
commit complete
-
Load configuration onto device and commit new configuration. Configure Security
Administrator and login with Security Administrator credentials.
-
Configure FIPS by setting
set system fips level
1 and commit.
[edit]
root@hostname# set system fips level 1
-
After deleting and reconfiguring CSPs, commit will go through and device needs
reboot to enter FIPS mode.
[edit]
security-administrator@host# commit
[edit]
system reboot is required to transition to FIPS level 1
commit complete
-
Reboot the device:
[edit]
security-administrator@host# run request system reboot
-
After rebooting the device, FIPS self-tests will run and device enters FIPS
mode.
security-administrator@host:fips>
