We just purchased an new fortigate 60e and 80e. Both came preinstalled
with 5.4.3The first thing i want/need to do is enable fips-cc. Looked it
up in the CLI guide and found system/fips-cc CLI Syntax config system
fips-cc edit set status {enable | d...
when i do a get sys status saysfips-cc mode: enable and all the things i
expect from fips mode is happening, everything is disabled by default,
password policy is enforced, the lower levels of encryption are
disabled. Works as it should.
i do not have anything running 5.6But i do have two new fortigate 300d.
One with downgraded to 5.2.7 and the other factory default at 5.4.4.
Both setup fips-cc without issue. I doubt the 5.4.4 is considered
certified. But it is enabled
Learned today that have to use console cable. SSh or HTTPS will not
allow you to enable fips. Will need serial cableHaving a copy of the
fortiexplorer ready to go will help a lot to reconfigure
I agree it needs to be a fips enabled fortios to enable fips. And that
is my frustrationhttp://docs.fortinet.com/...rtigate-cli-ref-54.pdf page
508 describes the cli for it basically the manual for my version of the
software gives very clear instruct...
