VMware Aria Operations for Networks 6.13

6.14 6.13 6.12 6.11 6.10
简体中文 Deutsch Español Français 日本語 한국어 繁體中文 English

VMware Aria Operations for Networks
 and FIPS

In
VMware Aria Operations for Networks
, you can use FIPS validated cryptographic modules for internal and external connections.
VMware Aria Operations for Networks
 uses the following validated modules:
FIPS Object Module
Version
Certificate
VMware OpenSSL
1.0.2y
VMware's OpenSSL
2.0.20-vmw
BC-FJA (Bouncy Castle FIPS Java API)
version 1.0.2.1
You can find more information about the cryptographic modules that VMware has validated against the FIPS 140-2 standard from here: https://www.vmware.com/security/certifications/fips.html.

Using FIPS Validated Cryptographic Modules for Internal Connections

By default,
VMware Aria Operations for Networks
 uses FIPS validated cryptographic modules for internal connections.

Using FIPS Validated Cryptographic Modules for External Connections

By default, the use of FIPS validated cryptographic modules are deactivated for external connections. However, by enabling FIPS mode for external connections, you can restrict the use of cryptographic modules to FIPS validated cryptographic modules.
  1. Go to
    Settings
    System Configuration
    .
  2. Switch the
    FIPS Mode For External Connections
     toggle to true.
Enabling
FIPS Mode For External Connections
 will restrict the use of cryptographic modules to the BC-FJA module.
For third-party devices such as switches, routers, and firewalls,
VMware Aria Operations for Networks
 uses SSH connections for fetching the configuration data. To learn about supported algorithms for such SSH connections, see Encryption Algorithms and Ciphers.

Content feedback and comments