Turning off FIPS disables the FIPS feature and removes all constraints imposed by the FIPS mode prerequisites.
Warning: To be fully FIPS compliant, no FIPS critical security parameters can be used outside
of the FIPS approved mode of operation. A few of these parameters are burned into the firmware itself
and thus to be fully compliant, zeroization must be performed. If you wish to continue using your
system rather than returning the hardware to SonicWall for zeroization, and you are willing to
knowingly skip zeroization, you can disable FIPS mode in the AMC. This will logically destroy all
To use your existing, FIPS-compliant certificates after disabling FIPS mode, export the certificates before
disabling FIPS and then import them again after FIPS is disabled. See Exporting and Importing FIPS-Compliant Certificates.
To disable FIPS
In the AMC, navigate to System Configuration > General Settings
In the FIPS Security section, click Edit.
Clear the box next to Enable FIPS mode.
Existing certificates will be deleted from the system in the next step. To preserve your
FIPS-compliant certificates, ensure that you have exported them.
Click Save, and then apply your Pending changes.
Your appliance will be rebooted to apply these changes. Any connections will be terminated.
Was This Article Helpful?
Help us to improve our support portal