Note: Anytime you change the mode, you must reboot to complete the configuration.

When performing a Cisco APIC software downgrade, you must disable FIPS first.

The FIPS mode can be one of the following:

- Enable

- Disable

The default is Disable.

NOTE: Nessus has provided the target output to assist in reviewing the benchmark to ensure target compliance.


Log into the Cisco APIC Web Console:
Navigate to 'System' -> 'System Settings'.

Click 'Fabric Security'.

Click the 'Policy' tab.

Set 'FIPS Mode' to an appropriate value for your environment.

This security hardening control applies to the following category of controls within NIST 800-53: System and Communications Protection.This control applies to the following type of system Cisco_ACI.