FIPS 140-2 compliance - can it be enabled/disabled after Identity Manager is installed?