Workflow for FIPS-enabled NFM-P discovery of a new device

Description

The following are the high-level steps required to commission and discover a device for NFM-P management using FIPS security.

Note: In order to use the workflow, the following must be true:

FIPS is enabled on a main server using a parameter in the top-level section of samconfig, as described in the NFM-P system installation procedures.

Stages
 

Manually enable FIPS mode on the device; see the device documentation for information.

Note: You cannot use the NFM-P to enable FIPS mode on a device.


Manually create a FIPS-compliant SNMPv3 user account on the device

Note: You cannot use the NFM-P to create an SNMPv3 user account on a device.


Create an NFM-P SNMPv3 user account that matches the device user account.


Create a FIPS-compliant NFM-P discovery rule for the device, and specify the NFM-P SNMPv3 user in the associated mediation policy.

In accordance with the NFM-P polling policy, the NFM-P discovers and manages the device using FIPS security during the next discovery-rule scan.