Does PAM conform to security certifications such as Common Criteria (CC) and Federal Information Processing Standard (FIPS)?

PAM 3.x

PAM is certified for Common Criteria as announced here:

https://www.ca.com/us/company/newsroom/press-releases/2016/ca-technologies-delivers-first-and-only-privileged-access-management-product-certified-for-common-criteria-using-niap-preferred-protection-profile.html

FIPS-140-2 is certified. There is a FIPS version of PAM (different than non-FIPS version) downloadable from Support Online where you can enable FIPS mode.