You can configure vRealize Log Insight to ensure FIPS (Federal Information Processing Standards) compliance for better security. This set of standards describes document processing, encryption algorithms, and other information technology standards for use within United States' non-military government agencies and by government contractors and vendors who work with the agencies. When you activate FIPS, vRealize Log Insight uses the FIPS 140-2 standard with Security Level 1, which specifies basic security requirements to protect sensitive or valuable data.

For information about how different VMware products support FIPS 140-2, see https://www.vmware.com/security/certifications/fips.html.

vRealize Log Insight uses Apache Thrift for node-to-node communication. Activating FIPS automatically enables Thrift over SSL, which makes this communication more secure. However, you can also enable Thrift over SSL without activating FIPS. For more information, see https://kb.vmware.com/s/article/82299.

Prerequisites

Verify that you are logged in to the vRealize Log Insight web user interface as a Super Admin user, or a user associated with a role that has the relevant permissions. See Create and Modify Roles for more information. The URL format of the web user interface is https://log-insight-host, where log-insight-host is the IP address or host name of the vRealize Log Insight virtual appliance.

Procedure

  1. Navigate to the Administration tab.
  2. Under Configuration, click General.
  3. In the FIPS Mode pane, click the Activate FIPS Mode toggle button to activate FIPS.
    Caution: Once you activate FIPS, you cannot deactivate it.
  4. Click Save.

Results

When you save the FIPS configuration, all the nodes are rebooted. You have to wait for a few minutes before you can use vRealize Log Insight again.