I am looking to disable FIPS mode on a FortiGate 100E, 200E, 500E.
Is it as simple as format, load new firmware, restore config?
Is there anything in the config that needs to be edited out?
Do you have FIPS certified firmware image installed or just have FIPS-CC enabled? FIPS-CC can be disabled in the CLI, please refer to https://community.fortinet.com/t5/FortiGate/Technical-Tip-How-to-enable-FIPS-CC-mode/ta-p/196629
config system fips-ccset status disable
It is as simple as I hoped.
I had a fips version installed. I backed it up. Formatted. Installed a non-fips version. Restored my configuration. I then cleaned up the leftover bits in policies and profiles.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.