Posted on 2015-01-06
I have a Windows 2003 server where on installing a .NET web application we see the following error:
Error while finalizing the configuration. This implementation is not part of the Windows Platform FIPS validated cryptographic algorithms.
After a quick google i had to disable the following setting for this application to install:
To correct this you will need to disable the "Local Security Setting System cryptography: Use FIPS compliant algorithms for encryption, hashing, and signing" policy in Windows.
Go to Start > Control Panel > Administrative tools > Local Security Policy. The Group Policy dialog appears.
Under the "Local Policies" heading, select "Security Options" and look for the entry, "System cryptography: Use FIPS compliant algorithms for encryption, hashing, and signing."
If entry this is enabled, disable it.
The problem is we need to use TLS with this web application and my understanding is that TLS is a FIPS application. Is this a problem with the .NET application specifically or have i not setup TLS/Certificates up properly?