Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Cryptographic Module Validation Program CMVP

Certificate #4362

Details

Module Name
FortiManager 6.2
Standard
FIPS 140-2
Status
Active
Sunset Date
9/21/2026
Overall Level
1
Caveat
When operated in FIPS mode and installed, initialized and configured as specified in the FIPS 140-2 Compliant Operation Section of the Security Policy with the entropy token installed as indicated in the Security Policy. Authentication at level 3 is only applicable when identity-based authentication is enforced for the User role. No assurance of the minimum strength of generated keys
Security Level Exceptions
  • Roles, Services, and Authentication: Level 3
  • Design Assurance: Level 2
  • Mitigation of Other Attacks: N/A
Module Type
Firmware
Embodiment
Multi-Chip Stand Alone
Description
The FortiManager OS is a firmware operating system that runs exclusively on Fortinet's FortiManager product family. FortiManager units are PC-based, purpose built appliances.
Tested Configuration(s)
  • FortiManager-300F with Intel® Core™ i3-6100 processor
Approved Algorithms
AES Certs. #A1063, #C1907 and #C1987
CVL Cert. #C1987
DRBG Cert. #C1984
ECDSA Cert. #A1063
HMAC Cert. #C1987
KAS KAS-SSC Cert. #A1063, CVL Cert. #C1987
KAS-SSC Cert. #A1063
KTS AES Cert. #C1907 and HMAC Cert. #C1987; key establishment methodology provides 128 or 256 bits of encryption strength
KTS AES Cert. #C1987; key establishment methodology provides 128 or 256 bits of encryption strength
RSA Certs. #A1063 and #C1987
SHS Cert. #C1987
Allowed Algorithms
N/A
Firmware Versions
FortiManager v6.2, build9599

Vendor

Fortinet, Inc.
16 Fitzgerald Road
Ottawa, ON K2H 8R6
Canada

Alan Kaye
akaye@fortinet.com
Phone: 613-225-9381 x87416
Fax: 613-225-2951

Validation History

Date Type Lab
11/9/2022 Initial Lightship Security, Inc.