Disabling FIPS-Complaint Encryption on Windows

The Professional, Enterprise and Education versions of Microsoft Windows have a hidden setting that enables government-certified “FIPS-compliant” encryption. FIPS stands for “Federal Information Processing Standards.” It is a set of government standards that define how certain things are used in the government—for example, encryption algorithms. This setting in not available on the Home version of Microsoft Windows.

If the FIPS-Complaint Encryption option is enabled, this can block Microsoft’s .NET framework from accessing computer functions, procedures, and subroutines that are not FIPS-validated. This may result in improper functioning of software not FIPS-validated.

This issue can be easily corrected by accessing and modifying the computer’s Local Policies.

To disable FIPS-Complaint Encryption, follow these steps:

  1. Click on the Windows Start button, then type Control Panel into the search box, and then press the Enter key.
  2. In Control Panel, double click on Administrative Tools.
  3. In Administrative Tools, locate and double click on Local Security Policy.
  4. The Local Security Policy application will be displayed. In Security Settings, expand Local Policies, and then click Security Options as shown below.
  5. Locate the System cryptography: Use FIPS compliant algorithms for encryption, hashing, and signing setting in the displayed panel and then double click on it.
  6. The following dialog box will be displayed. Select the Disabled radio button entry and then click on the [Apply] button.
  7. The System cryptography: Use FIPS compliant algorithms for encryption, hashing, and signing status should now be set to Disabled.
  8. Restart the computer. This change will take effect after the Local Security Policy is applied during the Windows startup.

If you experience any other technical issues, contact CivilGEO technical support. Our staff will be glad to assist you further.

Related Articles