Cannot run the platform using Windows Supervisor in FIPS mode

On the Platform Administration page, FIPS_140-2 will be listed under other components when a Windows Supervisor operates the platform in FIPS mode. If it's not there, it's running in non-FIPS mode. This will occur if a licence is required or the System Passphrase does not adhere to FIPS standards. Niagara cannot enforce Windows User passwords (or Linux Supervisor User passwords ) to comply with FIPS.

To ensure that the System Passphrase is FIPS compliant:

Go to Workbench, Tools > Options > FIPS Options and ensure that Show FIPS Options is true.
Login to the platform, on the Platform Administration page click System Passphrase button. To modify the system passphrase, select This host will be licenced for FIPS-140-2 and then change the system passphrase.

System Passphrase Not Updated

After providing appropriate values for the System Passphrase, a new window System Passphrase Not Updated, opens with the message Error creating registry key (Error = 5).

Two possible solutions are available:

The Workbench must be started as Administrator to make the necessary registry key changes.
Go to Workbench, Tools > Options > FIPS Options and ensure that Show FIPS Options is true. Login to the platform, on the Platform Administration page click System Passphrase button. To modify the system passphrase, select This host will be licenced for FIPS-140-2 and then change the system passphrase and restart the Workbench.

Cannot run the platform using Windows Supervisor in FIPS mode

System Passphrase Not Updated

Related Links