We installed the UCCX cluster in 2017.  Part of the install was enabling FIPS on both servers and getting certs for ipsec, Tomcat from our Root.

I was running through some config verification documentation this week and found that our Sub UCCX server was not FIPS Enabled anymore.  Somehow either we spaced it during the install, or it became disabled along the way.

Is there a way I can check to see if it was enabled at some point then became disabled?

If it was enabled and became disabled, I will have to get new certificates again after I enable, yeah?