[英]How to enable FIPS on windows 7
必须从客户端测试ac#应用程序,该应用程序在具有FIPS enbaled的机器上工作
First, be aware of what actually happens when you enforce FIPS140-2 complient encryption within Windows. 首先,请注意在Windows中强制执行FIPS140-2兼容加密时实际发生的情况。 Details are at http://technet.microsoft.com/en-us/library/cc750357.aspx .
详情请访问http://technet.microsoft.com/en-us/library/cc750357.aspx 。 However, the main 'gotcha' (old SSL website's don't work in IE anymore) is detailed in the article linked below.
但是,主要的'gotcha'(旧的SSL网站不再在IE中工作)详见下面链接的文章。
The official instructions to enable FIPS 140-2 complience are at http://support.microsoft.com/kb/811833 , but can be summarised as follows: 启用FIPS 140-2 complience的官方说明位于http://support.microsoft.com/kb/811833 ,但可归纳如下:
If you wish to do this manually, you can also simply change the registry key HKLM\\System\\CurrentControlSet\\Control\\Lsa\\FIPSAlgorithmPolicy\\Enabled
to 1 如果您希望手动执行此操作,还可以将注册表项
HKLM\\System\\CurrentControlSet\\Control\\Lsa\\FIPSAlgorithmPolicy\\Enabled
更改为1
Finally, to repeat, it is very important that you read through the documentation before you enable this - it changes cryptography system wide, including how the file system (both EFS and Bitlocker) and network (IE, Remote Desktop and the main cryptographic libraries) are allowed to encrypt, as well as if you allowed to recover lost encryption keys. 最后,重复一遍,在启用此功能之前阅读文档非常重要 - 它会更改系统的加密,包括文件系统(EFS和Bitlocker)和网络(IE,远程桌面和主要加密库)的方式允许加密,以及允许恢复丢失的加密密钥。
As an alternative, for Windows 7 users (with admin rights), this is one of the "Network Properties". 作为替代方案,对于Windows 7用户(具有管理员权限),这是“网络属性”之一。 Step by step:
一步步:
Also, have in mind: 另外,请记住:
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.