How to verify if FIPS mode is enabled on the Edge SWG proxy and how to disable it?

search cancel

How to verify if FIPS mode is enabled on the Edge SWG proxy and how to disable it?

book

Article ID: 275288

calendar_today

Updated On:

Products

ProxySG Software - SGOS

Issue/Introduction

This article is intended to help to verify if your Edge SWG (proxySG) is running in FIPS mode.

Environment

Edge SWG (proxySG) is running 7.4.x version.

Resolution

In order to verify if FIPS mode enabled on the Edge SWG proxy, use CLI command "show version".

If FIPS mode is enabled, output shows "System is in FIPS mode; cryptographic module algorithm version: X.X.X".

ProxySG#show version
Version: SGOS X.X.X.XX SWG Edition
Release id: XXXXXX
Serial number: XXXXXXXXXX
NIC 0 MAC: XXXXXXXXXXXX
System is in FIPS mode; cryptographic module algorithm version: X.X.X

Additional Information

Use CLI command "fips-mode" to disable or enable FIPS mode.

To disables FIPS mode use CLI command.

# fips-mode disable

To enable FIPS mode use CLI command.

# fips-mode enable

Note: This command is available only from the serial console.
When you enter FIPS mode, all previous configurations are destroyed. When you exit FIPS mode, all FIPS configurations are destroyed.

Feedback

thumb_up Yes

thumb_down No