Mountain Lion: How to set up and maintain a FIPS-enabled system

Learn how to set up and maintain a FIPS-enabled OS X Mountain Lion system.

The OS X Mountain Lion cryptographic module requires an additional setup step to place the system into "FIPS Mode" for full compliance. The FIPS Administration Installer must be obtained and installed on the system by the System Administrator (Crypto Officer).

How to install the FIPS Administration Tools

For complete instructions about FIPS Administration Installation and management, refer to the Crypto Officer Role Guide for FIPS 140-2 Compliance OS X Mountain Lion v10.8.

The FIPS Administration Installer is available here. For complete instructions about FIPS Administration Installation and management, refer to the Crypto Officer Role Guide for FIPS 140-2 Compliance OS X Mountain Lion v10.8.

  1. Log in as an administrator on the destination computer system where the tools will be installed.
  2. Double-click the FIPS Administration Installer package.
  3. Click Continue after reading the information on the Introduction page.
  4. Click Continue after reading the information on the Read Me page. You can also print or save the information on this page as needed.
  5. Click Continue after reading the Software License Agreement on the License page. You can also print or save the information on this page as needed.
  6. Click Agree if you agree with the terms of the software license. Otherwise click Disagree and the installer will exit.
  7. Select the OS X volume to install the FIPS Administration Tools, then click Continue on the Select Destination page. The FIPS Administration Tools should only be installed on the startup (boot) volume.
  8. Click the Install button.
  9. Enter your administrator username and password.
  10. Click Continue Installation with the understanding that the computer must be restarted once the installation is complete.
  11. Click Restart.

Troubleshooting

If you encounter an issue, use the following steps:

  1. Restart the system in Single-User Mode. See: Starting up in single-user mode.
  2. Review the system.log for clarification of issues detected. The system log file is located at: /var/log/system.log
  3. If tool-related issues are found, re-run the installer and try again.
  4. If the integrity of the Security Module has not passed validation, reinstall OS X Mountain Lion, any available software updates, and then re-install this tool.
  5. If you are still unable to identify the issue, search Apple Support for FIPS-related information.

    Note
    : If you need further assistance, you can contact AppleCare for support.

Learn more

OS X Lion v10.7 information

Information about products not manufactured by Apple, or independent websites not controlled or tested by Apple, is provided without recommendation or endorsement. Apple assumes no responsibility with regard to the selection, performance, or use of third-party websites or products. Apple makes no representations regarding third-party website accuracy or reliability. Risks are inherent in the use of the Internet. Contact the vendor for additional information.

Last Modified:
Helpful?

Additional Product Support Information

Start a Discussion

in Apple Support Communities
See all questions on this article See all questions I have asked
United States (English)