see on GitHub

Configuration : How to enable FIPS compliant encryption algorithms?

Information

This feature requires a valid enterprise license.

By default, RavenDB server and client are not using FIPS compliant encryption algorithms. In order to turn it on, please refer to the appropriate sections below.

Enabling FIPS encryption algorithms on server

Warning

  • Raven/Encryption/FIPS is a global setting and it applies to all databases on a server.
  • Raven/Encryption/FIPS must be set before any database creation (including <system>).
  • Databases created with Raven/Encryption/FIPS turned off (default) will not work on other servers with 'FIPS' turned on (and vice versa). They must be exported and imported.

FIPS compliant encryption algorithms can be turned on by setting Raven/Encryption/FIPS configuration to true in server configuration file.

Enabling FIPS encryption algorithms on client

FIPS compliant encryption algorithms on client can be turned on by setting Raven/Encryption/FIPS appSetting to true in application configuration file (app.config or web.config).

Remarks

Note

Encryption algorithms used by server and client must match.