The BlackBerry Enterprise Mobility Server (BEMS) server must be configured to enable FIPS mode.
An XCCDF Rule
Description
<VulnDiscussion>Encryption is only as good as the encryption modules utilized. Unapproved cryptographic module algorithms cannot be verified and cannot be relied upon to provide confidentiality or integrity, and DOD data may be compromised due to weak algorithms. In addition, the application must be configured to use the FIPS version of all cryptographic algorithms and modules.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>
- ID
- SV-254729r879616_rule
- Severity
- Medium
- References
- Updated
Remediation - Manual Procedure
Enable FIPS Mode for BEMS.
1. In the BEMS Dashboard, under "BEMS Configuration", click "FIPS Mode".
2. Check the box "Enable FIPS Mode for Cluster".
3. Click "Save".