action.skip

FIPS Mode

When you run in FIPS mode, all connections are made using security protocols and algorithms that meet FIPS 140-2 standards. In this mode some standard connection options are not available.

To run Reflection X in FIPS mode

  1. Copy the ReflectionX.admx file from C:\Program Files (x86)\Micro Focus\Reflection\Configuration\GroupPolicy\ADMX to the central store (%systemroot%\PolicyDefinitions).

  2. Copy theReflectionX.adml file to %systemroot%\PolicyDefinitions\<locale>.

  3. Run the Group Policy editor using one of the following techniques:

    • Type the following at the command line:

      Gpedit.msc
      
    • In the Active Directory Users and Computers console, open the properties for an Organizational Unit, click the Group Policy tab, and edit or create a new policy object.

  4. Under User Configuration, open Administrative Templates and then open Reflection X.

  5. Select User Settings and then double-click the Force use of FIPS approved Cryptographic Module setting.

  6. Choose to enable this policy.

What is FIPS 140-2?

The United States Government's Federal Information Processing Standard (FIPS) 140-2 specifies security requirements for cryptographic modules. Cryptographic products are validated against a specific set of requirements and tested in 11 categories by independent, U.S. Government-certified testing laboratories. This validation is then submitted to the National Institute of Standards and Technology (NIST), which reviews the validation and issues a certificate. In addition, cryptographic algorithms may also be validated and certified based on other FIPS specifications. The list of validated products and the vendor's stated security policy (the definition of what the module has been certified to do) can be found at: Cryptographic Module Validation Program.

important

If you are configuring Reflection to use FIPS mode, you should ensure that you are running a version that has met all FIPS 140-2 standards. Contact technical support for more information.