Enabling FIPS 140-2 mode
There are several important things to take into consideration if you plan to operate WhatsUp Gold in FIPS 140-2 mode:
- WhatsUp Gold does not recommend that you enable FIPS if you plan to use SNMPv1, SNMPv2, or SNMPv3 credentials that do not use encryption or authentication.
- WhatsUp Gold will detect a FIPS compliant operating system and will place the system in FIPS 140-2 mode automatically upon initial start-up.
- WhatsUp Gold recommends that SSHv1 not be used on a server or device with associated SSH monitors or SSH actions, because WhatsUp Gold does not support communications using SSHv1.
- WhatsUp Gold recommends that SSHv2 only be used with FIPS 140-2 certified algorithms, because WhatsUp Gold in FIPS 140-2 mode does not support communications using non-certified algorithms.
- SNMPv3 credentials using MD5 and DES56 are prohibited; you are unable to enable FIPS if SNMPv3 credentials using MD5 exist in the Credentials Library. You must modify or remove such credentials in order to enable FIPS.
To enable or disable FIPS 140-2 mode:
- From the console main menu, click
- Click the icon.
- Select to enable FIPS 140-2 mode. Clear the selection to stop WhatsUp Gold from operating in FIPS 140-2 mode.
: WhatsUp Gold will automatically enable FIPS 140-2 mode when it detects that it is operating on a FIPS-compliant operating system.
: This option is disabled if any of the configured credentials in the Credentials Library are not FIPS-compliant. In order for this option to be available, you must go to the Credentials Library and either modify or remove the non-compliant credentials.
- Click to save changes.