FIPS and Microsoft Azure DevOps

Stephen Chevalier 21 Reputation points
2022-08-29T18:16:46.607+00:00

I am looking for documentation that says and or proves the Azure DevOps is not FIPS compliant. If it is then what must be configured to get it to work with FIPS 140.2

Not Monitored
Not Monitored
Tag not monitored by Microsoft.
35,817 questions
0 comments No comments
{count} votes

Accepted answer
  1. JimmySalian-2011 41,916 Reputation points
    2022-08-29T20:02:09.22+00:00

    Hi,

    I believe Microsoft Azure is FIPS compliant and Through the Microsoft Security Development Lifecycle (SDL), all Azure services use FIPS 140 approved algorithms for data security because the operating system uses FIPS 140 approved algorithms while operating at a hyper scale cloud. Microsoft maintains an active commitment to meeting the requirements of the FIPS 140-2 standard.

    More details over here and will clarify your queries: fips-140-validation

    ==
    Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

    0 comments No comments

2 additional answers

Sort by: Most helpful
  1. Stephen Chevalier 21 Reputation points
    2022-08-30T16:39:04.047+00:00

    I understand the concept for Azure services being FIPS compliant but how about Azure DevOps servers? I have not seen any documentation saying that Azure DevOps servers are FIPS compliant. This is what cyber security is requesting for proof.

    0 comments No comments

  2. tbgangav-MSFT 10,381 Reputation points
    2022-08-31T04:12:05.577+00:00

    Hi @Stephen Chevalier ,

    Azure DevOps is currently not supported in this Microsoft Q&A platform. These are the products that are currently supported in this Microsoft Q&A platform. You may ask Azure DevOps related questions in this developer community / via this Azure DevOps services support.

    0 comments No comments