Enabling FIPS 140-2 mode

Enabling FIPS 140-2 mode in SSMC is a two-part operation.

Procedure
  1. To enable FIPS 140-2 mode for the SSMC Web application, perform the following steps:
    1. Log in to the SSMC Administrator Console using ssmcadmin credentials.
    2. Click Actions > Preferences.

      The Edit Preferences window appears.

    3. In the Application panel, toggle FIPS mode enabled to Yes.
    4. Click OK.
  2. To enable FIPS 140-2 mode for appliance ecosystem, perform the following steps:
    1. Log in to the appliance through SSH as ssmcadmin.
    2. Run the following command:

      sudo /ssmc/bin/config_security.sh -o fips_mode –a enable -f

    NOTE: To complete enabling the FIPS mode, the first step requires a restart of SSMC service to take effect, whereas, the second step requires an appliance reboot. Combining the two, either opt for a reboot or use –f option in the second step to reboot post configuring FIPS mode.