FIPS

When operating in FIPS (Federal Information Processing Standard) Mode, the Dell SonicWALL Security Appliance supports FIPS 140-2 Compliant security. Among the FIPS-compliant features of the Dell SonicWALL Security Appliance include PRNG based on SHA-1 and only FIPS-approved algorithms are supported (DES, 3DES, and AES with SHA-1).

NOTE: FIPS in SonicOS is not currently certified with Federal Information Processing Standard.

To enable FIPPs and see a list of which of your current configurations are not allowed or are not present:

1	Go to the Systems > Settings page.

2	Scroll to the bottom to the FIPS section.

3	Select the Enable FIPS Mode option. The FIPS Mode Verification window appears with a list of your required and not allowed configurations.

4	If your SonicWALL

•	Complies with the checklist, go to Step 5.

•	Does not comply with the checklist, manually change or disable settings to be compliant with FIPS mode requirement.

TIP: Leave the checklist window open while you make the configuration changes. If you click OK before all required changes are complete, the Enable FIPS Mode checkbox is cleared automatically upon closing the verification window. Select the checkbox again to see what configuration changes are still needed for NDPP compliance.

5	Click OK to reboot the security appliance in FIPS mode. A second warning displays.

6	Click Yes to continue rebooting. To return to normal operation, clear the Enable FIPS Mode checkbox and reboot the firewall in non-FIPS mode.

CAUTION: When using the Dell SonicWALL Security Appliance for FIPS-compliant operation, the tamper-evident sticker that is affixed to the Dell SonicWALL Security Appliance must remain in place and untouched.