Installing a configuration in a firewall switch to FIPS mode.

Installing a configuration in a firewall switch to FIPS mode.

7276
Created On 01/10/23 21:45 PM - Last Modified 06/02/23 14:23 PM


Symptom


After moving a firewall into FIPS mode and installing the configuration and attempting to login. Login fails due to password not being right.

Environment


A new firewall running in FIPS mode and installing a configuration with a local account being added to the machine.

Cause


The password hash between FIPS enabled devices and non-FIPS devices are different so the password hash for "Password" in non-FIPS is different than the hash for FIPS enabled so the login doesn't take the password anymore because "Password" Is now something different resulting in an authentication error.

Resolution


The source device that the base config is coming from must also be in FIPS mode otherwise the hash will be different.
Other users also viewed:
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u000000kGBICA2&lang=en_US&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail

Choose Language