In FIPS 140 mode, the software uses Transport Layer Security v1.2 and ignores the and settings. Because of this, in Foundation pre-9.1 (but not in 9.1), a FIPS 140 enabled Domain Manager cannot interact with a non FIPS 140 enabled Domain Manager.

The environment variable SM_FIPS140 controls FIPS 140 status.

Procedure

  • Set the environmental variable SM_FIPS140 to TRUE to enable FIPS 140 mode.
    Note: When FIPS 140 mode is enabled, the software uses Transport Layer Security v1.2, and the settings of SM_OUTGOING_PROTOCOL and SM_INCOMING_PROTOCOL are ignored.

    • TRUE = Enable FIPS 140 mode

    • FALSE = Disable FIPS 140 mode (default)