Are Advanced Threat Protection platform or Symantec Endpoint Detection and Response appliance software FIPS compliant?

book

Article ID: 150939

calendar_today

Updated On:

Products

Endpoint Detection and Response Advanced Threat Protection Platform Endpoint Protection with Endpoint Detection and Response

Issue/Introduction

 You may have a requirement for Windows servers and/or clients to be in FIPS mode.

Environment

Windows 10 and Windows Server 2012 and newer will have this registry key enabled:

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa\FipsAlgorithmPolicy "Enabled"=dword:00000001

Resolution

The ATP and SEDR appliances are not FIPS compliant under any software version. SEP Clients on FIPS-mode enabled Windows will not be able to Enroll to the appliances for the ECC 2.0 feature.

Additional Information

Attachments