security cryptomod-fips show

Contributors

Display the status of cryptomod-fips

Availability: This command is available to cluster administrators at the admin privilege level.

Description

This command displays information about the status of the cryptomod FIPS module. By default, this command displays the following information:

  • Node name

  • FIPS version

  • Module version

  • FIPS state

  • Boolean indicating if module is a user-space module

  • Boolean indicating if module is operating in FIPS mode

  • Boolean indicating if module is currently under validation

Parameters

{ [-fields <fieldname>,…​]

If you specify the -fields <fieldname>, …​ parameter, the command output also includes the specified field or fields. You can use '-fields ?' to display the fields to specify.

| [-instance ] }

If you specify the -instance parameter, the command displays detailed information about all fields.

[-node {<nodename>|local}] - Node

Selects the nodes that match this parameter value.

[-fips-state-text <text>] - FIPS State

Shows the FIPS state of the module.

  • POWER ON STATE

  • SELF-TEST STATE

  • ERROR STATE

  • OPERATE STATE

  • POWER OFF STATE

[-fips-version <text>] - FIPS Version

Shows the FIPS version.

[-module-version <text>] - Module Version

Shows the cryptomod FIPS module version.

[-is-user-space-module {true|false}] - Is User Space Module?

True if the module is a user-space module.

[-is-fips-enabled {true|false}] - Is FIPS Mode Enabled?

True if the module is operating in FIPS mode.

[-is-iut-enabled {true|false}] - Is an IUT Module Enabled?

True if the module is currently under validation.

Examples

cluster1::> security cryptomod-fips show
Node   FIPS            FIPS    Module
       State           Version Version
------ --------------- ------- ---------
node-1 OPERATE STATE   140-2   2.2
node-2 OPERATE STATE   140-2   2.2