Home > Storage > PowerScale (Isilon) > Product Documentation > Security and Compliance > Dell PowerScale OneFS: Security Considerations > Disabling SSO MFA and restoring SSH access
This section applies only to OneFS 9.5.0.0 and later versions.
After removing the STIG security profile or disabling FIPS compliance mode, SSO MFA remains enabled and the SSH access must be restored.
Note: Run the following steps before exiting the SSH session after removing the STIG security profile or disabling FIPS compliance. Otherwise, SSH access may not be available at the next login.
After successfully removing the STIG security profile or disabling FIPS compliance, perform the following steps:
isi_gconfig -t jwt-config authentication_mode=0
SSO MFA remains enabled after removing the STIG security profile or disabling FIPS compliance. This may prevent accounts without the ISI_PRIV_LOGIN_PAPI_BYPASS_MFA privilege from accessing the WebUI or PAPI.
isi ssh settings modify --host-key-algorithms='+ssh-dss,ssh-dss-cert-v01@openssh.com'
After removing the STIG security profile or disabling FIPS compliance mode, ensure this step is complete before exiting the SSH session. Otherwise, SSH access may not be available at the next login.