Configure FIPS 140-2 approved data encryption

Compass supports FIPS 140-2 approved data encryption.

FIPS (Federal Information Processing Standard) 140-2 is the U.S. government computer security standard used to accredit cryptographic modules. FIPS 140-2 includes a list of approved cryptographic algorithms and describes approved modes of operation.

You can configure a Compass deployment to be FIPS 140-2 approved by performing the following tasks:
  • Use a FIPS 140-2 approved LDAP server.
  • Disable the remember-the-password feature of the Compass Client or use a FIPS 140-2 certified JRE algorithm.
  • Upgrade the schema repository and associated user databases to feature level 7.
  • Configure all Compass users to be LDAP authenticated