STIGhubSTIGhub
STIGsSearchCompare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

  • Browse STIGs
  • Search
  • Compare Versions

Resources

  • About
  • Release Notes
  • VPAT
  • DISA STIG Library
STIGs updated 5 hours ago
Powered by Pylon
© 2026 Beacon Cloud Solutions, Inc. All rights reserved.
← Back to BlackBerry Enterprise Mobility Server 3.x Security Technical Implementation Guide

V-254729

CAT II (Medium)

The BlackBerry Enterprise Mobility Server (BEMS) server must be configured to enable FIPS mode.

Rule ID

SV-254729r879616_rule

STIG

BlackBerry Enterprise Mobility Server 3.x Security Technical Implementation Guide

Version

V1R2

CCIs

CCI-000803

Discussion

Encryption is only as good as the encryption modules utilized. Unapproved cryptographic module algorithms cannot be verified and cannot be relied upon to provide confidentiality or integrity, and DOD data may be compromised due to weak algorithms. In addition, the application must be configured to use the FIPS version of all cryptographic algorithms and modules.

Check Content

Verify FIPS Mode is enabled for BEMS.

1. Under BEMS Systems Settings select "BEMS Configuration".
2. Select "FIPS Mode".
3. Confirm "Enable FIPS Mode for Cluster" has been selected.

If "Enable FIPS Mode for Cluster" is not selected, this is a finding.

Fix Text

Enable FIPS Mode for BEMS.

1. In the BEMS Dashboard, under "BEMS Configuration", click "FIPS Mode".
2. Check the box "Enable FIPS Mode for Cluster".
3. Click "Save".