Details

Note: Anytime you change the mode, you must reboot to complete the configuration.



When performing a Cisco APIC software downgrade, you must disable FIPS first.



The FIPS mode can be one of the following:


- Enable


- Disable



The default is Disable.



NOTE: Nessus has provided the target output to assist in reviewing the benchmark to ensure target compliance.


Solution

Log into the Cisco APIC Web Console:
Navigate to 'System' -> 'System Settings'.

Click 'Fabric Security'.

Click the 'Policy' tab.

Set 'FIPS Mode' to an appropriate value for your environment.


This security hardening control applies to the following category of controls within NIST 800-53: System and Communications Protection.This control applies to the following type of system Cisco_ACI.


References


Source