Previous Topic: How to Configure FIPS-only Mode

Next Topic: Set the Policy Server to FIPS-only Mode

Set an Agent to FIPS-only Mode

You set an Agent to FIPS-only mode to ensure that the Agent only accepts session keys, Agent Keys, and shared secrets that are encrypted using FIPS-compliant algorithms.

To set an Agent to FIPS-only mode

  1. Open the SmHost.conf file with a text editor.

    The following line appears in the file:

    fipsmode="MIGRATE"
    
  2. Edit the line to read:
    fipsmode="ONLY"
    
  3. Save and close the file.
  4. Restart the machine that is hosting the Agent.

    The agent is operating in FIPS-migration mode.

  5. Repeat the previous steps for each machine in the environment that is registered as a trusted hosted.

You may now set Policy Servers to operate in FIPS-only mode.


Copyright © 2010 CA. All rights reserved. Email CA about this topic