This chapter provides the procedure to convert the Agent to FIPS mode when it is already installed in non-FIPS mode.
NOTE:Once you have converted the Agent to FIPS mode, you cannot revert the Agent to non-FIPS mode.
To convert an existing Agent in non-FIPS mode to FIPS mode:
Open the Agent configuration file /etc/vigilent.conf in edit mode.
Search for the parameter useFipsMode and set the value of this parameter to 1.
Restart the Agent and check if the Agent is running in FIPS mode.
NOTE:For more information on how to restart the Agent see, Restart Methods for the Security Agent for UNIX.
Ensure that the VigilEntAgent_2620.log file (located in cmnagent/log) contains the following entry: INFO [Date_Timestamp, PID:<pid_number> [vosSSLCodec] FIPS mode enable succeeded