McDewey

Multi-vendor documentation library · semantic search · MCP endpoint at /mcp

Page 159

↗ View in doc context
page
159
source
cucm/v15/cli-reference/cucm-15-cli-reference.md
chunk_id
cucm::v15::cli-reference::cucm-15-cli-reference::143

This example details on how to enable utils EnhancedSecurityMode: admin:utils EnhancedSecurityMode enable The system is operating in NON-FIPS and NOT operating in Enhanced Security Mode. Enhanced Security Mode can be enabled only when the system is operating in FIPS mode Do you wish to enable FIPS mode as well (yes/no) ? yes Warning : This operation will modify the password policies 1)Password Length should be between 14 to 127 characters. 2)Password should have at least 1 lowercase, 1 uppercase, 1 digit and 1 special character. 3)Any of the previous 24 passwords cannot be reused. 4)Minimum age of the password is 1 day and Maximum age of the password is 60 days. 5)Any newly generated password's character sequence will need to differ by at least 4 characters from the old password's character sequence. Warning : This mode will limit the total number of concurrent web application sessions to 3.

This will change the system to Enhanced Security Mode and will reboot

Do you want to continue (yes/no) ? yes The protocol for communication with remote syslog server is already set to tcp. No changes required. The system is already operating in contact search authentication enable mode; no change required. Exiting. The concurrent web application session limit has been successfully set to 3. Setting password restrictions as part of Enhanced Security Mode enable Calling fips enable Security Warning : The operation will regenerate certificates for 1)CallManager 2)Tomcat 3)IPsec 4)TVS 5)CAPF 6)SSH 7)ITLRecovery Any third party CA signed certificates that have been uploaded for the above components will need to be re-uploaded. If the system is operating in mixed mode, then the CTL client needs to be run again to update the CTL file. If there are other servers in the cluster, please wait and do not change the FIPS settings on any other node until the FIPS operation on this node is complete and the system is back up and running.

This will change the system to FIPS mode and will reboot.

Command Line Interface Reference Guide for Cisco Unified Communications Solutions, Release 15 and SUs 135 Set Commands set webapp session maxlimit