Feature | Compliant | Warning | Blocked |
Account passwords See
Account passwords. | Yes, when local user passwords and local authentication use SHA256-based or SHA512-based hash | Yes | Yes, when MD5 is used |
Automatic licensing See
Automatic licensing. | No | Yes | No |
Blockstore See
Cipher requirements. | Yes, when configured with AES_128, AES_192, or AES_256 | No | No |
Citrix | No | Yes | No |
Delta software upgrade | Yes | No | No |
File transfers | Yes | No | No |
HTTP Kerberos | No | Yes | No |
Image integrity checks for RiOS | Yes | No | No |
IPsec secure peering See
IPsec. | No | Yes | No |
iSCSI with CHAPs | No | No | No |
Lotus Notes encryption See
Lotus Notes encryption . | No | Yes | No |
MAPI-RPC encryption | No | Yes | Yes |
MAPI-OA encryption (RC4 or AES) | No | Yes | No |
Mobile Controller cluster communications in FIPS mode using SHA-1 based hash. Clusters with a mix of Mobile Controllers running in FIPS and non-FIPS mode clusters are supported but not recommended. | Yes | No | No |
Network web proxy See
Network proxy host. | No | Yes | No |
NTP with SHA authentication See
NTP. | Yes, when not configured to use MD5 | Yes | No |
RADIUS See
RADIUS and TACACS+. | No | Yes | No |
SCC Auto-Registration | No | Yes | No |
Secure peering | Yes | No | No |
Secure transport See
Secure transport. | No | No | No |
Secure vault | Yes | No | No |
SMBv1/CIFS signing See
SMB/CIFS signing. | No | Yes | Yes |
SMBv2/SMBv3 signing with client using NTLM authentication | No | Yes | No |
SMBv2/SMBv3 signing with client using Kerberos authentication See
SMB2/3 signing. | Yes | No | No |
SMBv3 signing/encryption See
SMB2/3 signing. | No | Yes | Yes |
Snapshots See
SNMP. | Yes, when a third party uses FIPS-approved ciphers. | No | No |
SNMP See
SNMP. | Yes, when configured to not use MD5 or DES for user passwords | Yes | No |
SSH See
SSH. | Yes, when configured with FIPS ciphers | Yes | No |
SSL optimization See
SSL optimization. | Yes | Yes | No |
SSL secure peering See
SSL secure peering. | Yes | Yes | No |
SSL web UI See
Web user interface. | Yes, when using certificates generated with a size greater than 1024 | Yes | Yes |
TACACS+ See
RADIUS and TACACS+. | No | Yes | No |
Telnet See
Telnet server. | No | Yes | Yes |
Virtual services platform See
WCCP. | No | No | No |
WCCP See
WCCP. | No | Yes | No |
Web interface (Apache web server) | Yes | No | No |
Windows AD authority | No | Yes | Yes |