CLI Command ReferencepolicyMakito X User’s Guide, v2.0, Issue 01 318POLICY PARAMETERSParameter Default Description/Valuescryptocompliance None Specifies the required cryptographiccompliance, either:• None• NDPP11: Activates cryptographic securityto a level compliant with the NetworkDevice Protection Profile v1.1.• FIPS140: All management cryptography isoperated in the FIPS 140-2 mode.• Sp800-52r1: All management cryptographyfollows the guidelines of NIST SpecialPublication 800-52 Rev 1.NOTE: Either selection reinforces security forall management functions of the encoder interms of cryptography. This setting takeseffect upon the next reboot.sslv3 See NOTE: Enables or disables SSLv3 as a supportedTLS version: Yes, NoNOTE: SSLv3 is disabled on factory newsystems. On upgraded systems, SSLv3 isenabled only if upgrading a system where no(None) cryptographic compliance isconfigured. SSLv3 can be enabled only ifcompliance is set to None.Specifies which TLS (Transport Layer Security) versions are accepted from the HTTPSclient. At least one TLS version must be enabled.tlsv1.0 Yes Enables or disables TLSv1.0 as a supportedTLS version: Yes, Notlsv1.1 Yes Enables or disables TLSv1.1 as a supportedTLS version: Yes, Notlsv1.2 Yes Enables or disables TLSv1.2 as a supportedTLS version: Yes, Nopasswordquality Basic Specifies the required password strength,either:• Basic• Strong
