Welcome to our community!

FIPS Certification

Avatar
tzobl
  • updated
  • Closed

ConnectWise Control should seek a FIPS certification. It already has FIPS compliance, but our remote support software requires FIPS certification to be used to service law enforcement customers.

Replies 8
Avatar
1
Steve Van Dyk

Due to Law Enforcement requirements this is something that would be incredibly beneficial for us too. 

Avatar
1
KalebD

Agreed, this would allow us to support LEAs conveniently!

Avatar
0
Caitlin M Barnes Team Member

ConnectWise Control is FIPS-compliant but not FIPS-certified. Our Relay service is responsible for handling traffic to and from your ConnectWise Control server. All traffic is automatically encrypted with AES-256 block encryption and RSA provided by the Microsoft RSA/Schannel Cryptographic Provider. These particular implementations of the AES-256 and RSA algorithms have been designated as FIPS compliant for ConnectWise Control servers on Windows. For more information, see Microsoft's documentation on FIPS 140 Validation.


If you need an official compliance letter, contact Sales at controlsales@connectwise.com.
Avatar
0
Caitlin M Barnes Team Member
  • Closed
Avatar
0
kalebdienelt

Is it possible to not use the relay to control the traffic?

Avatar
0
kalebdienelt

*with the on premise version*

Avatar
0
Caitlin M Barnes Team Member

Hi Kalebdienelt, 

No, it is not possible to avoid the relay. 

Caitlin 

Avatar
0
Sunny Lowe

Any updates on this?



Top contributors
Avatar
Avatar
Avatar
Avatar
Avatar
Avatar
Avatar
Avatar
Avatar
Avatar
Avatar
Avatar
Avatar
Avatar
Avatar
Avatar
Avatar
Avatar
Avatar
Avatar