EmpowerID supports FIPS (Federal Information Processing Standards) compliance, which is required for organizations needing to adhere to that must meet the higher cryptographic requirements of the United States government as standards established by the FIPS protocols. Enabling EmpowerID for FIPS compliance involves adding a "FIPSEnabled" String Value to the EmpowerID key, setting its value to "true," and restarting the EmpowerID Web Role Windows serviceU.S. government. FIPS compliance ensures that systems use approved cryptographic algorithms.
To enable FIPS compliance in EmpowerID, you must configure the system by adding a specific registry key. The following steps outline how to enable this setting.
Procedure
Open the Registry Editor and navigate to :
Navigate to
HKEY_
LOCAL_MACHINE/SOFTWARE/TheDotNetFactory/EmpowerID
.
Create a New String Value:
Right-click
the EmpowerID key, select New > String
Value from the context menu.
Name
the new value
FIPSEnabled
.
Set the Value:
Set the
FIPSEnabled
value to true.
Restart the EmpowerID Web Role Windows Service:
Restart the service for the changes to take effect.
...
Error Handling
If you are working in
...
a FIPS-compliant environment and do not
...
enable this setting, any attempt to run EmpowerID workflows will
...
result in the following error message:
...
“This implementation is not part of the Windows Platform FIPS validated cryptographic algorithms.”
If you encounter this error, verify that the FIPSEnabled
key is correctly set to true in the registry.