Submit a ticketCall us

Looking to compare latest NPM features with previous versions of NPM?
The NPM new feature summary offers a comparison of new features and improvements offered with this release.

 

Home > Success Center > Network Performance Monitor (NPM) > Network Automation Manager > Network Automation Manager Installation Guide > Security enhancements and exceptions for SolarWinds Orion Platform products > Enable FIPS

Enable FIPS

Table of contents
No headers
Created by Caroline Juszczak, last modified by Caroline Juszczak on Oct 04, 2016

Views: 7 Votes: 0 Revisions: 2

FIPS (Federal Information Processing Standard) defines security and interoperability standards for computers used by the U.S. federal government.

Monitored nodes and network discoveries must use FIPS-compliant authentication and privacy or encryption methods.

FIPS-Compliant Methods

Authentication

SHA1
Privacy or encryption AES128, AES192, AES256

 

SolarWinds recommends that you install all FIPS-compliant SolarWinds software on FIPS-compliant servers and maintain all non-compliant SolarWinds software on non-compliant servers.

  1. Configure the Orion server for FIPS compliance. See the Microsoft Support knowledge base for more information.
  2. Start the SolarWinds FIPS 140-2 Manager (SolarWinds.FipsManager.exe).

    By default, SolarWinds.FipsManager.exe is located in the Install_Volume:\Program Files (x86)\SolarWinds\Orion folder.

  3. Read the welcome text, and click Next.
    The SolarWinds FIPS 140-2 Manager will confirm that the current configuration of your SolarWinds products is FIPS-compliant.
    • If an installed product is not FIPS-compliant, click Close, remove any non-compliant Orion Platform products from the FIPS-compliant server, and run the FIPS 140-2 Manager again.
    • If FIPS 140-2 is disabled, select Enable FIPS 140-2, and click Next.
    • If the FIPS Manager provides a list of objects or saved network discovery definitions that are not FIPS-enabled, complete the following steps.

      To refresh the list of non-compliant objects after editing the credentials, restart the FIPS 140-2 Manager.

      • Click the non-compliant monitored node, and edit its Polling Method to be FIPS-compliant.
        1. Select SNMPv3 as the SNMP Version.
        2. Select FIPS-compliant Authentication and Privacy/Encryption methods, and provide the passwords.
        3. Click Submit.
      • Click the non-compliant network discovery, and edit SNMP credentials to be FIPS-compliant.
        1. Confirm that all SNMP credentials are SNMPv3. Delete or edit any credentials that are not FIPS-compliant SNMPv3.
        2. Confirm that all SNMP credentials use FIPS-compliant Authentication and Privacy/Encryption methods, and provide the passwords.
        3. Complete the Network Sonar Wizard using the updated credentials.
  4. Click Restart now to restart all relevant SolarWinds services.
Last modified
10:39, 4 Oct 2016

Tags

Classifications

Public