Operating Netscape Navigator in FIPS PUB 140-1 Compliant Mode

[Contents]


CONFIGURING ENTERPRISE SERVERS FOR FIPS PUB 140-1 CLIENTS

  1. Open up a Netscape Navigator window to the Administrative Server for the Enterprise Server:

    NOTE: For this example, it is assumed that an Enterprise Server has been installed, enabled, and is up and running. Please supply the name of your admin server for <server_name> and the port of your admin server for <server_port>. For this example, a server named "gandalf" is used.

  2. On this screen, click the button with your server name ("gandalf" in this case), and the Server On / Off window should appear:

  3. From the Server Preferences menu, select Stronger Ciphers. The Enforce Strong Security Requirements screen should appear:

  4. Select Require 128 bit secret key size for access, click OK, and the Save and Apply Changes screen should appear:

  5. Click Save and Apply, and a password dialog should appear:

  6. Enter the password, and press return. The changes are processed, and if successful, the following alert box should appear:

  7. Under the alert box, the screen should appear similar to the following:

    When the user clicks OK to dismiss the alert box, they will be returned to the Enforce Strong Security Requirements screen.

  8. From the Server Preferences menu, select Encryption Preferences, and the Encryption Preferences screen should appear:

  9. Check and uncheck the options in this screen (as shown above) so that the only option allowed is SSL version 3 and the only SSL 3.0 ciphers allowed are Triple DES using SHA and DES using SHA. Click OK.

    For these changes to be processed, the server must be shutdown and restarted. The following popup alert should appear:

  10. Click OK, and the Save and Apply Changes screen should appear:

  11. Click Save and Apply, and a password dialog should appear:

  12. Enter the password, and press return. The changes are processed, and if successful, the following alert box should appear:

  13. Under the alert box, the screen should appear similar to the following:

    When the user clicks OK to dismiss the alert box, they will be returned to the Encryption Preferences screen.

  14. From the Server Preferences menu, select Encryption On / Off. The Encryption On / Off screen should appear:

  15. Select On, enter the <server_port> port number (the port number in the example above is 5666), select an alias (the alias in the example above is "web"), and click OK. The Save and Apply Changes screen should appear:

  16. Click Save and Apply, and a password dialog should appear:

  17. Enter the password, and press return. The changes are processed, and if successful, the following alert box should appear:

  18. Under the alert box, the screen should appear similar to the following:

    When the user clicks OK to dismiss the alert box, they will be returned to the Encryption On / Off screen.

  19. From the Server Preferences menu, select On / Off. The On / Off screen should appear:

  20. Click Server Off. If the server shuts down successfully, the following alert box should appear:

  21. Click OK to dismiss the alert box, and then click Server On button. A password dialog box should appear:

  22. Enter the password, and press return. The changes are processed, and if successful, the following alert box should appear:

  23. Click OK to dismiss the alert box, and click Admin to return to Administrative Server main window. The first screen shown in step 1 should now be redisplayed.

Last Updated: 02/26/98

Any sample code included above is provided for your use on an "AS IS" basis, under the Netscape License Agreement - Terms of Use