Is the Endpoint Security, SSLVPN (TLS 1.2) or IPSEC tunnel traffic (AES-256, SHA256, Group 2) considered FIPS 140-2 validated encryption? If its not called FIPS 140-2 validated encryption what is it called? Non-validated encryption/basic encryption/encryption? Our security auditors want to know.
side point: It would be nice to be able to print out crypto-maps like CISCO for VPN configs or something else that's graphical and sums up VPN encryption/access or both.
This is the official request:
Encryption configuration for remote access. If FIPS 140-2 validated encryption is being used please demonstrate the cryptographic module was configured in accordance with the CMVP security policy.