Use the following procedure to enable FIPS-CC
mode on a software version that supports Common Criteria and the
Federal Information Processing Standards 140-2 (FIPS 140-2). When
you enable FIPS-CC mode, all FIPS and CC functionality is included.
When you enable FIPS-CC mode, the firewall
will reset to the factory default settings; all configuration will
Boot the firewall into maintenance mode as follows:
Establish a serial connection to the console
port on the firewall.
Enter the following CLI command:
debug system maintenance-mode
Press Enter to continue.
You can also reboot the firewall and
at the maintenance mode prompt.
Set FIPS-CC Mode
Enable FIPS-CC Mode
When prompted, select
After successfully switching to FIPS-CC mode, the following status
FIPS-CC mode enabled successfully
In addition, the following changes will take place:
display at all times in the status bar at the bottom of the web
The console port functions as a status output port only.
The default admin login credentials change to admin/paloalto.