Fortinet Document Library

Version:

Version:

Version:

Version:

Version:

Version:

Version:


Table of Contents

CLI Reference

config system fips-cc

Configure FIPS-CC mode.

config system fips-cc

Description: Configure FIPS-CC mode.

set status [enable|disable]

set entropy-token [enable|disable|...]

set self-test-period {integer}

set key-generation-self-test [enable|disable]

end

config system fips-cc

Parameter

Description

Type

Size

Default

status

Enable/disable/fips-ciphers

option

-

disable

 

Option

Description

enable

Enable FIPS-CC mode.

disable

Disable FIPS-CC mode.

entropy-token

Enable/disable/dynamic entropy token.

option

-

enable

 

Option

Description

enable

Enable entropy token to be present during boot process.

disable

Disable entropy token to be present during boot process.

dynamic

Dynamic detect entropy token to be present during boot process.

self-test-period

Self test period.

integer

Minimum value: 1 Maximum value: 1440

1440

key-generation-self-test

Enable/disable self tests after key generation.

option

-

disable

 

Option

Description

enable

Enable self tests after key generation.

disable

Disable self tests after key generation.

config system fips-cc

Configure FIPS-CC mode.

config system fips-cc

Description: Configure FIPS-CC mode.

set status [enable|disable]

set entropy-token [enable|disable|...]

set self-test-period {integer}

set key-generation-self-test [enable|disable]

end

config system fips-cc

Parameter

Description

Type

Size

Default

status

Enable/disable/fips-ciphers

option

-

disable

 

Option

Description

enable

Enable FIPS-CC mode.

disable

Disable FIPS-CC mode.

entropy-token

Enable/disable/dynamic entropy token.

option

-

enable

 

Option

Description

enable

Enable entropy token to be present during boot process.

disable

Disable entropy token to be present during boot process.

dynamic

Dynamic detect entropy token to be present during boot process.

self-test-period

Self test period.

integer

Minimum value: 1 Maximum value: 1440

1440

key-generation-self-test

Enable/disable self tests after key generation.

option

-

disable

 

Option

Description

enable

Enable self tests after key generation.

disable

Disable self tests after key generation.