To achieve FIPS compliance on a Riverbed appliance, you must run a software version that includes the Riverbed Cryptographic Security Module (RCSM) v1.1, configure the system to run in FIPS operation mode, and adjust the configuration of any features that are not FIPS compliant.

You can enter FIPS operation mode after you install a FIPS license and restart the appliance. When you operate in FIPS mode, the system automatically uses FIPS-compliant versions where possible, but some features with encryption require you to ensure they are compliant.

With FIPS mode enabled, the system monitors configuration changes and provides warnings if you configure a feature to be noncompliant with FIPS. These warning messages appear when you try to change a configuration setting to an unsupported option. You can also view these warnings using the show fips status command.

Installing the FIPS license

Enabling FIPS mode

Verifying that your system uses FIPS-compliant encryption

About maintaining FIPS compliance

Disabling FIPS mode

Upgrading to software with FIPS mode