High security settings – HP Secure Key Manager User Manual
Page 172
Description
Component
Click Set FIPS Compliant to alter the settings shown in the High Security Settings and
Security Settings Configured Elsewhere sections and enable FIPS compliance. When
you enable FIPS compliance, the Management Console automatically adjusts the
settings in the High Security Settings and Security Settings Configured Elsewhere
sections to comply with FIPS standards.
IMPORTANT:
Modifying any of the settings in the High Security Settings and Security Settings
Configured Elsewhere sections will take this device out of FIPS compliance.
CAUTION:
According to FIPS requirements, you cannot enable or disable FIPS when there
are keys on the SKM. You must
manually delete all keys before enabling and
disabling FIPS compliance. Keys are zeroized upon deletion.
We strongly
recommend that you back up your keys before deleting. This button is available
on FIPS-capable devices that are not configured for FIPS compliance.
Set FIPS Compliant
High Security Settings
Use this section to view the status of security-related functionality on the SKM. This functionality must
be disabled for FIPS compliance.
These settings are automatically configured when you select Set FIPS Compliance in the FIPS Compliance
section.
IMPORTANT:
When you enable FIPS compliance on the SKM, the functionality displayed here is disabled. Modifying
any of the items in the High Security Settings section immediately takes the device out of FIPS
compliance. This section should be used to
review the key and device security functionality that has
been disabled for full FIPS compliance. When the device is FIPS-compliant, you should not alter these
settings.
IMPORTANT:
According to FIPS requirements, you cannot enable or disable FIPS when there are keys on the SKM.
You must
manually delete all keys before enabling and disabling FIPS compliance. Keys are zeroized
upon deletion.
We strongly recommend that you back up your keys before deleting.
Using the Management Console
172