Audit and Control Management Server 2013: "Exception has been thrown by the target of an invocation" error while processing files or with Spreadsheet Compare

Overview:

Audit and Control Management Server (ACM) 2013 or Spreadsheet Compare may show this error:

Exception has been thrown by the target of an invocation.

Cause:

ACM and Spreadsheet Compare use MD5 encryption which is not compliant with the National Institute of Standards and Technology (NIST) as compliant with the Federal Information Processing Standard (FIPS).

If FIPS enforcement is turned on, ACM and Spreadsheet Compare will not work. The FIPS enforcement setting can be accessed in the Local Security Policy or in the registry.

To view the setting in Local Security Policy, go to Administrative Tools > Local Security Policy > Security Options and look for System cryptography: Use FIPS compliant algorithms for encryption, hashing, and signing. In the example below, it shows that it is Enabled:

To check the Registry setting, look for the value for:

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa\FipsAlgorithmPolicy\Enabled

If the value is 1, FIPS enforcement enabled.

Workaround:

To use Local Security Policy to change the setting, open Administrative Tools > Local Security Policy > Security Options, right click System cryptography: Use FIPS compliant algorithms... and select Properties. Click Disabled, and then click OK.

To use the Regsitry instead, open it using regedit.exe and set this value to 0:

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa\FipsAlgorithmPolicy\Enabled

You will need to restart the Spreadsheet Processor in ACM or the Spreadsheet Compare client for the changes to take effect.

Before you make these changes, we recommend that you evaluate the risks that are associated with implementing this process in your particular environment. If you decide to implement this process, take any appropriate additional steps to help protect the system. We recommend that you use this process only if you really require this process.