STIGhubSTIGhub
STIGsRMF ControlsCompare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

  • Browse STIGs
  • Search
  • RMF Controls
  • Compare Versions

Resources

  • About
  • Release Notes
  • VPAT
  • DISA STIG Library
STIGs updated 3 hours ago
Powered by Pylon
© 2026 Beacon Cloud Solutions, Inc. All rights reserved.
← Back to NetApp ONTAP DSC 9.x Security Technical Implementation Guide

V-246958

CAT I (High)

ONTAP must be configured to implement cryptographic mechanisms using FIPS 140-2.

Rule ID

SV-246958r961557_rule

STIG

NetApp ONTAP DSC 9.x Security Technical Implementation Guide

Version

V2R3

CCIs

CCI-000803CCI-003123CCI-002890

Discussion

Unapproved mechanisms that are used for authentication to the cryptographic module are not verified and therefore cannot be relied upon to provide confidentiality or integrity, and DoD data may be compromised. Satisfies: SRG-APP-000412-NDM-000331, SRG-APP-000411-NDM-000330, SRG-APP-000179-NDM-000265

Check Content

Use "set -privilege advanced" reply "y" to continue and "security config show" to see if cluster FIPS mode is true.

If ONTAP is not configured to implement cryptographic mechanisms using FIPS 140-2, this is a finding.

Fix Text

Configure ONTAP to use cryptographic mechanisms with "set -privilege advanced" reply "y" to continue and  "security config modify -is-fips-enabled true -interface SSL".