This chapter provides the procedure to convert the Agent to FIPS mode when it is already installed in non-FIPS mode.
NOTE:Once you have converted the Agent to FIPS mode, you cannot revert the Agent to non-FIPS mode.
To convert an existing Agent in non-FIPS mode to FIPS mode:
Open the Agent configuration file /etc/vigilent.conf in edit mode.
Search for the parameter useFipsMode and set the value of this parameter to 1.
Change the log level from 1 to 4 in /etc/vigilent.conf file to see the logs.
Restart the Agent and check if the Agent is running in FIPS mode.
NOTE:For more information on how to restart the Agent see, Restart Methods for the Security Agent for UNIX.
Ensure that the VigilEntAgent_2620.log file (located in cmnagent/log) contains the following entry: INFO [Date_Timestamp, PID:<pid_number> [vosSSLCodec] FIPS mode enable succeeded