Secure Mobile Access 12.4 Administration Guide

Disabling FIPS

Turning off FIPS disables the FIPS feature and removes all constraints imposed by the FIPS mode prerequisites.

Warning: To be fully FIPS compliant, no FIPS critical security parameters can be used outside of the FIPS approved mode of operation. A few of these parameters are burned into the firmware itself and thus to be fully compliant, zeroization must be performed. If you wish to continue using your system rather than returning the hardware to SonicWall for zeroization, and you are willing to knowingly skip zeroization, you can disable FIPS mode in the AMC. This will logically destroy all configurable parameters.

To use your existing, FIPS-compliant certificates after disabling FIPS mode, export the certificates before disabling FIPS and then import them again after FIPS is disabled. See Exporting and Importing FIPS-Compliant Certificates.

To disable FIPS

  1. In the AMC, navigate to System Configuration > General Settings

  2. In the FIPS Security section, click Edit.

  3. Clear the box next to Enable FIPS mode.

    Existing certificates will be deleted from the system in the next step. To preserve your FIPS-compliant certificates, ensure that you have exported them.

  4. Click Save, and then apply your Pending changes.

Your appliance will be rebooted to apply these changes. Any connections will be terminated.

Was This Article Helpful?

Help us to improve our support portal

Techdocs Article Helpful form

Techdocs Article NOT Helpful form

  • Still can't find what you're looking for? Try our knowledge base or ask our community for more help.