The following diagram illustrates a sample 12.52 SP1 environment operating in FIPS-migration mode and lists the order in which you configure each component and connection to operate in FIPS-only mode.
The shaded components represent sensitive data that must be re-encrypted using FIPS-approved algorithms. Do not continue with the migration process until you have:
Important! Password Services locks out users whose Password Blobs are not re-encrypted when the Policy Server is operating in FIPS-only mode. A user cannot regain access until you have deleted the Password Blob and cleared any disabled flags. Deleting the Password Blob results in the loss of the user's password history.
Copyright © 2014 CA.
All rights reserved.
|
|