Hi,
I need to verify that my MX84 is utilizing FIPS mode. I am running into conflicting information and cannot verify FIPS Validated encryption is being used.
- Cisco references CMVP Certificate #2984, which is no longer active (you have to search for historical certificates to find this certificate, and warns that it may be risky to use this certificate for Federal procurement). https://www.cisco.com/c/dam/en_us/solutions/industries/government/security_certification/pdfs/mx-mer...
- There are new CMVP Certificates for the Cisco FIPS Object Module (4174 and 4036). But I can't find a reference to these certificates for the MX devices (https://www.cisco.com/c/en/us/solutions/industries/government/global-government-certifications/fips-...)
- This page describes implementation of FIPS (https://documentation.meraki.com/General_Administration/Cross-Platform_Content/Meraki_Device_to_Clou...) and says:
Enable/Disable FIPS mode via UI
To satisfy the new FIPS compliance requirements for your network, please follow the instructions below.
This setting is available in the Dashboard under Network-wide -> General
- However, with MX16.16 installed, I do not see this section of Network-wide --> General:
- This page says that the MX doesn't support FIPS for AnyConnect: https://documentation.meraki.com/MX/Client_VPN/AnyConnect_on_the_MX_Appliance/AnyConnect_on_ASA_vs._...
So, my questions are:
- How do I verify which version of the Csico FIPS Object Module the MX84 with firmware NX16.16 is using?
- Why don't I see the option to enable FIPS mode per the Meraki documentation (see #4 above)?
Thanks!
