You can activate Federal Information Processing Standards (FIPS) for VMware Aria Operations to make your environment FIPS compliant and you can also activate firewall hardening.
Activate FIPS
You can activate FIPS in the VMware Aria Operations cluster at the time of installation or after VMware Aria Operations is up and running. Adding FIPS at installation is less intrusive because the cluster has not yet started.
If the cluster is running, to activate FIPS, you must take the cluster offline. For more information, see VMware Aria Operations Cluster Management.
FIPS mode is supported in Cloud Proxy. You can continue using your cloud proxy after enabling FIPS for the VMware Aria Operations cluster.
- In a Web browser, navigate to the master node administration interface. https://master-node-name-or-ip-address/admin.
- Enter the VMware Aria Operations administrator username of admin.
- Enter the VMware Aria Operations administrator password and click Log In.
- Click Administrator Settings.
Note: The Activate FIPS button is deactivated when the cluster is running.
- Click Activate FIPS after you take your cluster offline.
Note: Once you activate FIPS, you cannot deactivate the FIPS mode in the current setup. To revert to a FIPS deactivated setup, you must re-deploy VMware Aria Operations.
- In the Are you sure you want to activate FIPS dialog box, read the note and provide your consent for enabling FIPS and then click Yes.
Note: Once you activate FIPS, the cluster restarts and is not be available during this time. The cluster nodes are rebooted and once the cluster is online, all the nodes are FIPS activated.
Activate Firewall Hardening
Activating firewall hardening restricts network access to internal services in VMware Aria Operations.
- In a Web browser, navigate to the master node administration interface. https://master-node-name-or-ip-address/admin.
- Enter the VMware Aria Operations administrator username of admin.
- Enter the VMware Aria Operations administrator password and click Log In.
- Click Security Settings from the Administrator Settings page. , and then click
- Click Activate Firewall Hardening.