Configuring FIPS 140-3 Support
The Federal Information Processing Standards (FIPS) 140-3 standard defines security
requirements for cryptographic modules used by information systems. Organizations operating in
regulated environments often require applications and communication channels to use
FIPS-approved cryptographic algorithms and providers.
BigFix Inventory supports operation in FIPS mode starting from version 11.0.8. When FIPS mode is enabled, cryptographic operations performed by BigFix Inventory use FIPS-compliant cryptographic providers and algorithms where applicable.
This document describes how to:
- Enable or disable FIPS mode on BigFix Inventory components.
- Verify the current FIPS status.
- Validate successful FIPS configuration.
- Review relevant log entries.
- Troubleshoot common FIPS-related issues.
Before you begin
Before enabling FIPS mode:
- Ensure that BigFix Inventory version 11.0.8 or later is installed.
- Ensure that you have administrative (Windows) or root (Linux) privileges.
- Schedule a maintenance window because service restart is required.
- Back up the BigFix Inventory environment.
- Review existing SSL/TLS and database encryption configurations.