use-fips

This command indicates whether secure communication runs in FIPS mode.

Syntax

use-fips { on | off }

Parameters

on: Uses TLS version 1 as the secure communication protocol.
off: Uses SSL version 3 as the secure communication protocol. This setting is the default value.

Guidelines

The use-fips command determines whether to enable Federal Information Processing Standard (FIPS) mode for secure communication between the DataPower® Gateway and the Access Manager registry, policy, and authorization servers. The DataPower Gateway is the Access Manager client.

In an Access Manager deployment, FIPS enablement is a deployment-wide setting. If clients have different settings for this property, all clients might not restart after an action is processed. In the following situations, the Access Manager client is in the down state because it cannot establish a secure connection with the Access Manager server.

If the server requires TLS and the client uses SSL.
If the server requires SSL and the client uses TLS.

In these cases, you must restart one or more clients manually.