Important notes to consider before configuring SEP for FIPS 140-2 compliance mode
search cancel

Important notes to consider before configuring SEP for FIPS 140-2 compliance mode

book

Article ID: 152964

calendar_today

Updated On:

Products

Endpoint Protection

Issue/Introduction

For previous releases of Symantec Endpoint Protection, Symantec recommended that customers use the Microsoft FIPS modules to protect Symantec Endpoint Protection client and server communication for compliance with the FIPS 140-2 standard.

Symantec Endpoint Protection provides the Java Cryptography Extension (JCE) and RSA BSAFE cryptography library modules to protect its server-to-server communication and console-to-server communication. You can deploy Symantec Endpoint Protection and protect its key command and control communications with NIST FIPS-validated security modules.

 

Resolution

Symantec Endpoint Protection is FIPS compliant on versions 14.3 RU7 and later and 14.2 and earlier.  For FIPS compliance implementation and configuration visit

https://techdocs.broadcom.com/us/en/symantec-security-software/endpoint-security-and-management/endpoint-protection/all/Managing-a-custom-installation/configuring-symantec-endpoint-protection-manager-to-be-fips-compliant.html