Upgrading Device Software to FIPS-Enabled Version

Before configuring the system to operate in FIPS mode, you need to upgrade it to a software version (.cmp file) that supports FIPS and includes the FIPS signature (2048-bit / SHA-256 digital signature).

If the current version doesn't include the FIPS signature, after moving to the FIPS mode, the device will fail to load and returns to the non-FIPS mode. The device performs authentication on the .cmp image file upon every restart. If authentication fails, the device performs zeroization and disables the FIPS mode.