You can enable or disable FIPS-validated cryptography on the vCenter Server Appliance by using HTTP requests.

You can use various ways to execute HTTP requests. This task shows how to use the Developer Center in the vSphere Client to enable and disable FIPS on the vCenter Server Appliance. See VMware vCenter Server Management Programming Guide for more information about using APIs to work with the vCenter Server Appliance.

Procedure

  1. Log in to the vCenter Server system with the vSphere Client.
  2. From the Menu, select Developer Center.
  3. Click API Explorer.
  4. From the Select API drop-down menu, select appliance.
  5. Scroll down through the categories and expand system/security/global_fips.
  6. Expand GET and click Execute under Try it out.
    You can view the current setting under Response.
  7. Change the setting.
    1. To enable FIPS, expand PUT, enter the following in the request_body, and click Execute.
      {
      "enabled":true
      }
    2. To disable FIPS, expand PUT, enter the following in the request_body, and click Execute.
      {
      "enabled":false
      }

Results

The vCenter Server Appliance reboots after you enable or disable FIPS.