Table of Contents
Advertisement
To enable FIPS-140, perform the following steps:
Install the plug-in following the FIPS-140 instructions.
1.
Access either the Administration Server or the Server Manager and choose the
2.
Preferences tab.
For the Server Manager you must first select the server instance from the
drop-down list.
Click the Edit Listen Sockets link.
3.
The Listen Socket Table page appears.
Use the drop-down Action list to select Edit, if not already displayed, for the
4.
connection group you are enabling FIPS-140 on.
Use the drop-down list to turn Security on for that connection group, if it is off.
5.
Click OK.
6.
The Attributes link now appears.
Click the Attributes link.
7.
The Security Settings of Listen Socket page appears.
8.
Click the SSL3/TLS link.
9.
The Security Feature window appears.
Check Allow: SSL version 3, if it is not already checked.
10.
Select the appropriate FIPS-140 cipher suite:
11.
Click OK to close the Security Features window.
12.
Click OK
13.
For the Server Manager, click Apply, and then Restart for changes to take
14.
effect.
Setting Client Security Requirements
After you have performed all of the steps to secure your servers, you can set
additional security requirements for your clients.
(FIPS) DES with 56 bit encryption and SHA message authentication
(FIPS) Triple DES with 168 bit encryption and SHA message authentication
Setting Client Security Requirements
Chapter 5
Securing Your Enterprise Server
121
Advertisement
Table of Contents
