How to enable FIPS-CC mode on a FortiGate?

Question

Product Registration FortiCare Documentation

question

stylus asked Nov 15, '21

How to enable FIPS-CC mode on a FortiGate?

How do I enable FIPS-CC mode on my Fortigate? The instructions mention that I should run the following commands:

 # config system fips-cc
 (fips-cc) # set status enable
 (fips-cc) # end

But "status" isn't there and I get an error when I try to set it.

FortiOS

10 |600

Attachments: Up to 8 attachments (including images) can be used with a maximum of 1.0 MiB each and 10.0 MiB total.

Answer 1 · 2021-11-22T19:51:12Z

pingmemaybe answered Nov 22, '21

In order to see the "status" option, you must use a serial console connected to the FGT. The FGT will drop most configuration settings and restart, so it's recommended to backup before you continue.

You might also need to disable the entropy token in the fips-cc config if your device fails to boot:

set entropy-token disable

· 2

10 |600

Attachments: Up to 8 attachments (including images) can be used with a maximum of 1.0 MiB each and 10.0 MiB total.

stylus ♦♦ commented · Nov 22, 2021 at 07:52 PM

Thank you!

0 ·

dodhrajbsadcpas-ehrislistdcpds-network-support commented · May 17 at 07:00 PM

This statement "You might also need to disable the entropy token in the fips-cc config if your device fails to boot:" Should read "You will need to disable the entropy token in the fips-cc config if your device doesn't have an entropy token or your device will fail to boot:" The fix action is re-image.

0 ·

question

How to enable FIPS-CC mode on a FortiGate?

1 Answer

Write an Answer

Welcome to FortiAnswers

question details

#BEHINDTHEFIREWALL

question

How to enable FIPS-CC mode on a FortiGate?

1 Answer

Write an Answer

Welcome to FortiAnswers

question details

Related Questions

#BEHINDTHEFIREWALL