Using the automatic reboot method to enter FIPS mode

To ensure login password effectiveness under the password control policies, set the correct system time.

1. Enter system view.

   system-view

2. Enable FIPS mode.

   fips mode enable

   By default, the FIPS mode is disabled.

3. After the reboot method choice prompt appears, enter Y within 30 minutes.

   The system starts the interactive FIPS mode configuration process.

4. Enter the login username and password as prompted.

   The password must have a minimum of 15 characters and must contain uppercase and lowercase letters, digits, and special characters. After you enter the username and password, the device performs the following operations:

   • Creates a device management local user that uses the entered username and password.

   • Assigns the user the terminal service and the network-admin user role.

   • Saves the running configuration and specifies the configuration file as the startup configuration file.

   • Reboots, loads the startup configuration file, and enters FIPS mode.

To log in to the device, you must enter the configured username and password. After login, you are identified as the FIPS mode crypto officer.