Aruba Networks FIPS 140-2 manual

FIPS 140-2 Non-Proprietary Security Policy

for Aruba AP-120 Series and Dell W-AP120 Series

Wireless Access Points

Version 1.4

February 2012

Aruba Networks™

1322 Crossman Ave.

Sunnyvale, CA 94089-1113

Contents

Main FIPS 140-2 Non-Proprietary Security Policy for Aruba AP-120 Series and Dell W-AP120 Series Wireless Access Points Page Page Page 1 Introduction 1.1 Aruba Dell Relationship 1.2 Acronyms and Abbreviations Page 2 Product Overview 2.1 Aruba AP-120 Series 2.1.1 Physical Description Page Page 3 Module Objectives 3.1 Security Levels 3.2 Physical Security 3.2.1 Applying TELs 3.2.2 Aruba AP-124 TEL Placement Page 3.2.3 Aruba AP-125 TEL Placement Page Page 3.2.4 Inspection/Testing of Physical Security Mechanisms 3.3 Modes of Operation 3.3.1 Configuring Remote AP FIPS Mode 3.3.2 Configuring Control Plane Security (CPSec) protected AP FIPS mode 3.3.3 Configuring Remote Mesh Portal FIPS Mode 3.3.4 Configuring Remote Mesh Point FIPS Mode 3.3.5 Verify that the module is in FIPS mode 3.4 Operational Environment 3.5 Logical Interfaces 4 Roles, Authentication and Services 4.1 Roles 4.1.1 Crypto Officer Authentication 4.1.2 User Authentication 4.1.3 Wireless Client Authentication 4.1.4 Strength of Authentication Mechanisms Page 4.2 Services 4.2.1 Crypto Officer Services 4.2.2 User Services 4.2.3 Wireless Client Services 4.2.4 Unauthenticated Services 5 Cryptographic Algorithms 6 Critical Security Parameters Page Page Page 7 Self Tests