Government and Military

 View Only
last person joined: 5 days ago 

Deploying HPE Aruba Networking wireless LAN environments requiring a high level of security.
Back to discussions
Expand all | Collapse all

Aruba FIPS 140-2 Products in Evaluation

This thread has been viewed 5 times

  • 1.  Aruba FIPS 140-2 Products in Evaluation

    Posted Jul 25, 2013 03:49 PM

    The below table reflects the status of all Aruba hardware and software currently under FIPS 140-2 evaluation:

     

    FIPS 140-2

    Module Name

    Status

    NIST Update

    7200 Controllers with ArubaOS FIPS Firmware

    IUT

    8/12/2013

    RAP 5-WN, Dell W-RAP-5WN Remote Access Points

    IUT

    8/12/2013

    Common Cryptographic Module Version 1.0

    IUT

    8/12/2013

    RAP-3WN, RAP-3WNP, RAP-108, RAP-109, AP-114, AP-115 APs

    IUT

    8/12/2013

    AP-134, AP-135, RAP-155, RAP-155P

    IUT

    8/12/2013

    3000 and 6000/M3 Mobility Controllers with ArubaOS FIPS Firmware

    IUT

    8/12/2013

    620 and 650 Controllers with ArubaOS FIPS Firmware

    IUT

    8/12/2013

    AP-92, AP-93, AP-104, AP-105, AP-175 Wireless Access Points

    IUT

    8/12/2013

    AP-134, AP-135, RAP-155, RAP-155P Wireless Access Points

    IUT

    8/12/2013

     

     

    FIPS 140-2 Testing Phases:

    IUT → Review Pending → In Review → Coordination → Finalization


    #RAP155


  • 2.  RE: Aruba FIPS 140-2 Products in Evaluation

    Posted Oct 09, 2019 02:59 PM

    What are the latest devices and OS that are FIPS 140-2 compliant?

     

    I am using AP-274, 225 & 325.

    I am using OS 6.5.4.8-FIPS_65874 in controller models 7030 & 7205

    and OS 8.4.0.1-FIPS_69644 in controller model 7210

     

    Are the controllers, OS and APs I listed covered uner 140-2? I reveived lables with the AP225 & 325s that just said FIPS 140.

     

    I need an article or document for proof of this as I am doing STIGs.

     

    Thanks



  • 3.  RE: Aruba FIPS 140-2 Products in Evaluation

    EMPLOYEE
    Posted Oct 10, 2019 05:57 PM

    John,

     

    Take a look here:

     

    https://csrc.nist.gov/Projects/cryptographic-module-validation-program/validated-modules/Search

     

    Search for Aruba and you'll see everything including certificates of validation.  

     

    In Summary:

     

    AP 274 - AOS 8.2 #3485, AOS 6.5.1 #3022, AOS 6.5.0 #2498

    AP 225 - AOS 8.2 #3485, AOS 6.5.1 #3024, AOS 6.4.4 #2199

    AP 325 - AOS 8.2 #3485, AOS 6.5.1 #2989

     

    70xx Series - AOS 6.5.1 #3026, AOS 6.5.0 #2136 - Note that AOS 8.2 is imminent.

    72xx Series - AOS 6.5.1 #3025, AOS 6.5.0 #2136 - Note that AOS 8.2 is imminent.

     

    If you have any other questions regarding STIGs, please feel free to reach out.  ken.rich@hpe.com

     

    <edit>We validate to FIPS-140-2 Level 2 for all Controllers and APs.

     

    Regards,

     

    Ken

    CSE Federal