000033820 - The Federal Information Processing Standard  (FIPS) Support for Netwitnnes Endpoint UI (ECAT UI installed on different host)

Document created by RSA Customer Support Employee on Oct 4, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000033820
Applies ToRSA Product Set: ECAT
RSA Product/Service Type: ECAT
RSA Version/Condition: 4.2.x, 4.1.x, 4.0.x
Platform: Windows
Product Name: Netwitness Endpoint
 
IssueYou install ECAT UI on a machine that is not hosting the ECAT Console server.
When attempting to connect to the Console Server, but get an un-handled exception error below:
 
2016-01-18 11:12:24.336 1 System.Reflection.TargetInvocationException: Exception has been thrown by the target of an invocation. ---> System.InvalidOperationException: This implementation is not part of the Windows Platform FIPS validated cryptographic algorithms.
   at System.Security.Cryptography.MD5CryptoServiceProvider..ctor()
   --- End of inner exception stack trace ---
   at System.RuntimeMethodHandle.InvokeMethod(Object target, Object[] arguments, Signature sig, Boolean constructor)
   at System.Reflection.RuntimeConstructorInfo.Invoke(BindingFlags invokeAttr, Binder binder, Object[] parameters, CultureInfo culture)
   at System.Security.Cryptography.CryptoConfig.CreateFromName(String name, Object[] args)
   at System.Security.Cryptography.MD5.Create()
   at DevExpress.XtraEditors.Controls.ImagesComparer.GetHashString(Byte[] arrayToHash)
   at DevExpress.XtraEditors.Controls.ImagesComparer.AreEqual(Image imageA, Image imageB)
   at DevExpress.XtraEditors.Repository.RepositoryItemPictureEdit.set_InitialImage(Image value)
   at ECatUI.Configurations.DbConnection.DatabaseConnectionForm.InitializeComponent()
   at ECatUI.Configurations.DbConnection.DatabaseConnectionForm..ctor(Boolean aConnectAutomatically, Boolean aAllowConnect)
   at ECatUI.Program.Main(String[] args)
2016-08-18 11:23:06.984 1 8/18/2016 11:23:06 AM: Aplication is terminated
CauseThe machine is FIPS enabled.
At the present there is no support for ECAT UI to run on FIPS enabled systems.
 
ResolutionThis issue is being investigated by the Engineering team in order to provide a permanent resolution in a future release.
FIPS support is on the road-map for future versions of Netwitness Endpoint.
 
NotesAdditional Resources:
http://www.nist.gov/itl/fips.cfm
https://technet.microsoft.com/en-us/library/cc180745.aspx

Attachments

    Outcomes