Fortinet Document Library

Version:


Table of Contents

CLI Reference

6.2.1
Copy Link

Configure FIPS-CC mode.

  config system fips-cc
      Description: Configure FIPS-CC mode.
      set status [enable|disable]
      set entropy-token [enable|disable|...]
      set self-test-period {integer}
      set key-generation-self-test [enable|disable]
  end

config system fips-cc

Parameter Name Description Type Size
status Enable/disable FIPS-CC mode.
enable: Enable/disable FIPS-CC mode.
disable: Disable FIPS-CC mode.
option -
entropy-token Enable/disable/dynamic entropy token.
enable: Enable entropy token to be present during boot process.
disable: Disable entropy token to be present during boot process.
dynamic: Dynamic detect entropy token to be present during boot process.
option -
self-test-period Self test period. integer Minimum value: 1 Maximum value: 1440
key-generation-self-test Enable/disable self tests after key generation.
enable: Enable self tests after key generation.
disable: Disable self tests after key generation.
option -

Configure FIPS-CC mode.

  config system fips-cc
      Description: Configure FIPS-CC mode.
      set status [enable|disable]
      set entropy-token [enable|disable|...]
      set self-test-period {integer}
      set key-generation-self-test [enable|disable]
  end

config system fips-cc

Parameter Name Description Type Size
status Enable/disable FIPS-CC mode.
enable: Enable/disable FIPS-CC mode.
disable: Disable FIPS-CC mode.
option -
entropy-token Enable/disable/dynamic entropy token.
enable: Enable entropy token to be present during boot process.
disable: Disable entropy token to be present during boot process.
dynamic: Dynamic detect entropy token to be present during boot process.
option -
self-test-period Self test period. integer Minimum value: 1 Maximum value: 1440
key-generation-self-test Enable/disable self tests after key generation.
enable: Enable self tests after key generation.
disable: Disable self tests after key generation.
option -