-
Title
Fail to mount a recovery point with error "This implementation is not part of the Windows Platform FIPS validated cryptographic algorithm" -
Description
Mounting a recovery point from Local Mount Utility (LMU) or Core console fails with error:
"This implementation is not part of the Windows Platform FIPS validated cryptographic algorithm"
Following error is found in Apprecovery.log:
ERROR 2021-04-29T16:30:36 [10] - LocalMountUtility.Implementation.Mounts.RemoteMountService ()Invalid local mount request.System.Reflection.TargetInvocationException depth 0: Exception has been thrown by the target of an invocation. (0x80131604) ---> System.InvalidOperationException depth 1: This implementation is not part of the Windows Platform FIPS validated cryptographic algorithms. (0x80131509)at System.Security.Cryptography.MD5CryptoServiceProvider..ctor() +0x23 6002223 -
Cause
This issue is seen in servers where the FIPS (Federal Information Processing Standard Publication) setting is enabled. -
Resolution
Windows Registry Disclaimer:
Quest does not provide support for problems that arise from improper modification of the registry. The Windows registry contains information critical to your computer and applications. Make sure you back up the registry before modifying it. For more information on the Windows Registry Editor and how to back up and restore it, refer to Microsoft Article ID 256986 “Description of the Microsoft Windows registry” at Microsoft Support.
The FIPS policy needs to be disable to be able to successfully mount recovery points:
1. Press Windows Key+R to open the Run dialog.2. Type “regedit” into the Run dialog box (without the quotes) and press Enter.3. Navigate to “HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Lsa\FipsAlgorithmPolicy\”.4. Set value of key "Enabled" to 0