SV-220503r604141_rule
V-220503
SRG-APP-000411-NDM-000330
CISC-ND-001200
CAT I
10
Enable fips mode via the command fips mode enable.
Verify that FIPS mode is enabled as shown in the example below:
fips mode enable
Note: Cisco NX-OS software supports only SSH version 2 (SSHv2). Beginning in Cisco NX-OS Release 5.1, SSH runs in FIPS mode. Source: Cisco Nexus 7000 Series NX-OS Security Configuration Guide, Release 6.x
If the switch is not configured to use FIPS-validated HMAC to protect the integrity of remote maintenance sessions, this is a finding.
V-220503
False
CISC-ND-001200
Verify that FIPS mode is enabled as shown in the example below:
fips mode enable
Note: Cisco NX-OS software supports only SSH version 2 (SSHv2). Beginning in Cisco NX-OS Release 5.1, SSH runs in FIPS mode. Source: Cisco Nexus 7000 Series NX-OS Security Configuration Guide, Release 6.x
If the switch is not configured to use FIPS-validated HMAC to protect the integrity of remote maintenance sessions, this is a finding.
M
4066