Configuring FIPS 140-3 Support

The Federal Information Processing Standards (FIPS) 140-3 standard defines security requirements for cryptographic modules used by information systems. Organizations operating in regulated environments often require applications and communication channels to use FIPS-approved cryptographic algorithms and providers.

BigFix Inventory supports operation in FIPS mode starting from version 11.0.8. When FIPS mode is enabled, cryptographic operations performed by BigFix Inventory use FIPS-compliant cryptographic providers and algorithms where applicable.

This document describes how to:

  • Enable or disable FIPS mode on BigFix Inventory components.
  • Verify the current FIPS status.
  • Validate successful FIPS configuration.
  • Review relevant log entries.
  • Troubleshoot common FIPS-related issues.

Before you begin

Before enabling FIPS mode:

  • Ensure that BigFix Inventory version 11.0.8 or later is installed.
  • Ensure that you have administrative (Windows) or root (Linux) privileges.
  • Schedule a maintenance window because service restart is required.
  • Back up the BigFix Inventory environment.
  • Review existing SSL/TLS and database encryption configurations.