Enable and Verify FIPS-CC Mode Using Microsoft Intune on Android Endpoints

1. Enable FIPS mode on Android endpoints.

   1. Download the GlobalProtect app for Android and Deploy the GlobalProtect Mobile App Using Microsoft Intune.
   2. From the Microsoft Intune console, add Configuration Settings to enable FIPS-CC mode.

      To add configuration settings for Enable fips-cc-mode:

      1. Select APPSPolicyApp configuration policies<policy>Properties.
      2. Edit the Settings.

      3. On the Edit app configuration policies page, Add the Configuration Settings for enabling FIPS-CC mode.

      4. From the list of configuration keys, select Enable fips-cc mode.

      5. Set the Configuration Value to Yes for Enable fips-cc mode configuration key.

      6. Click Review and Save. The Edit app configuration policies page displays the newly added Enable-fips-cc-mode configuration settings.

      The configuration setting for Enable fips-cc mode is also displayed under the Configuration Settings area (APPSPolicyApp configuration policies<policy>Properties.

   After you enable the FIPS-CC mode on the Microsoft Intune console and synchronize the device with the Microsoft Intune, the console pushes the updated FIPS-CC mode configuration to the Android endpoints.
2. Verify that FIPS-CC mode is enabled is enabled successfully on an Android endpoint.

   1. Launch the GlobalProtect app.
   2. From the status panel, open the settings dialog (

      ).
   3. Select About.
   4. Verify that FIPS-CC mode is enabled. If FIPS-CC mode is enabled, the About dialog displays the FIPS-CC Mode Enabled status.

   If FIPS-CC mode could not be enabled successfully, the About dialog displays the FIPS-CC Mode Failed status.

3. View the logs to view the GlobalProtect app logs related to FIPS-CC mode on Android endpoints.
4. View, collect, and send the logs to the administrator to troubleshoot and resolve the issues related to FIPS-CC mode on Android devices.