beautypg.com

High security settings, 94 viewing the high security settings section, 72 fips compliance section components – HP Secure Key Manager User Manual

Page 157

background image

Table 72 FIPS Compliance section components

Component

Description

Is FIPS Compliant

Indicates if the SKM’s security configuration is consistent with FIPS Level 2

requirements. You cannot edit this field.If this value is Yes, the Set FIPS Compliant

button is not enabled.

Set FIPS Compliant

Click Set FIPS Compliant to alter the settings shown in the High Security Settings

and Security Settings Configured Elsewhere sections and enable FIPS compliance.

When you enable FIPS compliance, the Management Console automatically adjusts

the settings in the High Security Settings and Security Settings Configured Elsewhere

sections to comply with FIPS standards.

IMPORTANT:

Modifying any of the settings in the High Security Settings and Security Settings

Configured Elsewhere sections will take this device out of FIPS compliance.

CAUTION:

According to FIPS requirements, you cannot enable or disable FIPS when there

are keys on the SKM. You must

manually

delete all keys before enabling and

disabling FIPS compliance. Keys are zeroized upon deletion.

We strongly

recommend that you back up your keys before deleting.

This button is available

on FIPS-capable devices that are not configured for FIPS compliance.

High Security Settings

Use this section to view the status of security-related functionality on the SKM. This functionality must be

disabled for FIPS compliance.
These settings are automatically configured when you select Set FIPS Compliance in the FIPS Compliance

section.

IMPORTANT:

When you enable FIPS compliance on the SKM, the functionality displayed here is disabled. Modifying

any

of the items in the High Security Settings section immediately takes the device out of FIPS compliance.

This section should be used to

review

the key and device security functionality that has been disabled for

full FIPS compliance. When the device is FIPS-compliant, you should not alter these settings.

IMPORTANT:

According to FIPS requirements, you cannot enable or disable FIPS when there are keys on the SKM. You

must

manually

delete all keys before enabling and disabling FIPS compliance. Keys are zeroized upon

deletion.

We strongly recommend that you back up your keys before deleting.

Figure 94 Viewing the High Security Settings section

The following table describes the components of the High Security Settings section.

Secure Key Manager

157

See also other documents in the category HP Storage: