SonicOS 7 Device Settings
- SonicOS 7
- About Device Settings
- Managing SonicWall Licenses
- System Administration
- Configuring the Firewall Name
- Enabling Wireless LAN and IPv6
- Changing the Administrator Name and Password
- Configuring Login Security
- Multiple Administrators Support
- Enabling Enhanced Audit Logging Support
- Configuring the Wireless LAN Controller
- Enabling SonicOS API and Configuring Authentication Methods
- Enabling GMS Management
- Configuring the Management Interface
- Client Certificate Verification
- Selecting a Language
- Configuring Time Settings
- Managing Certificates
- Administering SNMP
- Firmware Settings
- Storage
- Restarting the System
- SonicWall Support
Enabling NDPP mode
A SonicWall network security appliance can be enabled to be compliant with Network Device Protection Profile (NDPP), but certain security appliance configurations are either not allowed or are required.
NDPP is a part of Common Criteria (CC) certification. However, NDPP in SonicOS is not currently certified.
The security objectives for a device that claims compliance to a Protection Profile are defined as:
Compliant TOEs (Targets Of Evaluation) will provide security functionality that address threats to the TOE and implement policies that are imposed by law or regulation. The security functionality provided includes protected communications to and between elements of the TOE; administrative access to the TOE and its configuration capabilities; system monitoring for detection of security relevant events; control of resource availability; and the ability to verify the source of updates to the TOE.
When you enable NDPP, a popup message displays with the NDPP mode setting compliance checklist. The checklist displays every setting in your current SonicOS configuration that violates NDPP compliance so that you can change these settings. You need to navigate around the SonicOS management interface to make the changes. The checklist for an appliance with factory default settings is shown in the following procedure.
To enable NDPP and see a list of which of your current configurations are not allowed or are not present:
The Enable NDPP Mode option cannot be enabled at the same time as the Enable FIPS Mode option, which is also on the Firmware & Backups > Settings dialog.
- Navigate to Device | Settings > Firmware and Settings.
- Click Settings.
- Click FIPS / NDPP.
-
Select Enable NDPP Mode.
The NDPP MODE SETTING COMPLIANCE CHECKLIST appears with a list of your required and not allowed configurations.
- If your SonicWall appliance:
- Complies with the checklist, go to Step 6.
Does not comply with the checklist, manually change or disable settings to be compliant with NDPP mode requirement.
Leave the checklist dialog open while you make the configuration changes. If you click OK before all required changes are complete, the Enable NDPP Mode option is cleared automatically upon closing the checklist dialog. Select the option again to see what configuration changes are still needed for NDPP compliance.
- Click OK.
Was This Article Helpful?
Help us to improve our support portal