000033820 - Federal Information Processing Standard (FIPS) support for the RSA NetWitness Endpoint UI installed on a different host

Document created by RSA Customer Support Employee on Oct 4, 2016Last modified by RSA Customer Support on Jun 3, 2019
Version 5Show Document
  • View in full screen mode

Article Content

Article Number000033820
Applies ToRSA Product Set: NetWitness Endpoint, ECAT
RSA Product/Service Type: User Interface
RSA Version/Condition: 4.4.x, 4.3.x
Platform: Windows
IssueAfter installing the RSA NetWitness Endpoint UI on a machine that is not hosting the ECAT Console server, when attempting to connect to the Console Server, the following unhandled exception error occurs:

2016-01-18 11:12:24.336 1 System.Reflection.TargetInvocationException: Exception has been thrown by the target of an invocation.
   ---> System.InvalidOperationException: This implementation is not part of the Windows Platform FIPS validated cryptographic algorithms.
   at System.Security.Cryptography.MD5CryptoServiceProvider..ctor()
   --- End of inner exception stack trace ---
   at System.RuntimeMethodHandle.InvokeMethod(Object target, Object[] arguments, Signature sig, Boolean constructor)
   at System.Reflection.RuntimeConstructorInfo.Invoke(BindingFlags invokeAttr, Binder binder, Object[] parameters, CultureInfo culture)
   at System.Security.Cryptography.CryptoConfig.CreateFromName(String name, Object[] args)
   at System.Security.Cryptography.MD5.Create()
   at DevExpress.XtraEditors.Controls.ImagesComparer.GetHashString(Byte[] arrayToHash)
   at DevExpress.XtraEditors.Controls.ImagesComparer.AreEqual(Image imageA, Image imageB)
   at DevExpress.XtraEditors.Repository.RepositoryItemPictureEdit.set_InitialImage(Image value)
   at ECatUI.Configurations.DbConnection.DatabaseConnectionForm.InitializeComponent()
   at ECatUI.Configurations.DbConnection.DatabaseConnectionForm..ctor(Boolean aConnectAutomatically, Boolean aAllowConnect)
   at ECatUI.Program.Main(String[] args)
2016-08-18 11:23:06.984 1 8/18/2016 11:23:06 AM: Application is terminated

User-added image
CauseThis error occurs because the Windows machine has been FIPS enabled.  At present, there is no support for the RSA NetWitness Endpoint UI to run on FIPS enabled systems.
ResolutionFIPS is not supported in versions 4.4. or previous versions.

FIPS support is planned for NetWitness Logs and Network 11.3 to incorporate FIPS compliance for the endpoint server.
WorkaroundInstall NetWitness Endpoint UI on a non-FIPS enabled Windows system.
NotesAdditional resources: