It is imperative that you consult the Security Policy before changing any gateway configuration.

When changing the gateway’s configuration via CLI commands, an error or warning will be issued any time a command is entered that is not FIPS compliant. The “show fips-mode” CLI command may be used to verify whether FIPS approved mode is currently enabled. The command will also attempt to detect whether any non-compliant CLI commands are currently configured. However, the Security Policy must be used as the definitive source for FIPS compliance since not all non-compliant configurations may be detected.