Set Fortigate Firewall into FIPS-CC Mode via Console Cable
config system fips-cc
set status enable
end
(you will be asked to confirm admin password)
Start bring up interface
config system interface
edit interfacename
set status up
(note this as to be done for all physical interfaces and vlan interfaces i.e. fortilink. Default fortilink out of box requires limiting services to fabric and ping by addtional command set allowaccess fabric ping)
next
end
To mange via https, after bringing up "lan" (not just lan1-3 physical ports) do the following
set mode static
set ip xxx.xxx.xxx.xxx xxx.xxx.xxx.xxx (ip then submask)
set allowaccess https ping
next
end
If the Switches and APs are not in or capable of FIPS mode you have to set this in the FortiGate so they can communicate correctly.
config switch-controller global
set fips-enforce disable
end
Was this article helpful?
That’s Great!
Thank you for your feedback
Sorry! We couldn't be helpful
Thank you for your feedback
Feedback sent
We appreciate your effort and will try to fix the article