CMVP stands for Cryptographic Module Validation Program.

PAM official 4.1 documentation link that follows indicates CAPAM is using CA Technologies C-Security Kernel, which is FIPS 140-2 validated (CMVP certificate #3043) -----  https://techdocs.broadcom.com/us/en/symantec-security-software/identity-security/privil[…]/configure-enhanced-encryption-for-stored-credentials.html

Note that the NIST link (https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/3043) points that Cryptographic Module Validation Program (CMVP) certificate #3043 in outdated and hence invalid for use.

Release : 4.1.x

Cryptographic Module Validation Program (CMVP) certificate #3043 in outdated and hence invalid for use

This document has now been corrected to show correct CMVP certificate #3349 (as opposed to the outdated CMVP certificate #3043 that was erroneously documented earlier) usage by PAM.

1. CMVP certificate #3349 for C --- https://techdocs.broadcom.com/us/en/symantec-security-software/identity-security/privileged-access-manager/4-1-1/configuring-your-server/hardware-security-modules-hsms-for-credential-manager.html  

2.  CMVP certificate  #3514 for Java  --- https://techdocs.broadcom.com/us/en/symantec-security-software/identity-security/privileged-access-manager/4-1-1/configuring-your-server/hardware-security-modules-hsms-for-credential-manager.html (**** This document needs no correction as CMVP certificate  #3514 is still valid)

None.