Sage 100

I'm working with a Department of Defense Manufacturer that is looking to upgrade from v2021 Premium to v2025 Premium with OM, and they are telling me they need to enable FIPS Validated Encryption on the Sage 100 Application.  Does anyone have any insight into this or now if it is going to impede their user of Sage 100? 

For the v2025 Upgrade, does it supports FIPS validated encryption or a has a FIPS mode for the application? We will be required to enable FIPS algorithms on the systems that we use to meet CMMC compliance.

------------------------------
Madeline Stefanou
Sr. Solution Consultant
RKL eSolutions, LLC
LANCASTER PA
717.208.3117
------------------------------

@Madeline Stefanou, I have a Department of Defense Manufacturer, they have never mentioned FIPS validated encryption, however their network infrastructure has to meet CMMC compliance, which rules out 3rd party hosted environments. (I have not found one.)  They throw numerous compliance rules to me and so far, Sage 100 Advanced has not been an issue.  They use PM, I refuse to use OM.  ScanForce rocks!

------------------------------
[Michele] [Herzog] [CPA,CITP, CGMA]
[Overland Park] [KS]
[816-520-1365]
------------------------------

The answer to the Sage 100 application question on FIPS compliance and FIPS encryption to me personally is an easy "heck no," but maybe you should seek an official Sage answer to kind of protect yourself. Maybe not. However, my understanding is FIPS can be implemented at the network level with network appliances like routers, switches, network cards, etc. (You must get appliances that support it, of course, as they don't all by default). I think being allowed to implement at the network level depends on the FIPS CMMC compliance level they actually need. See if you can shift the discussion to their IT governance dept (ha ha)

------------------------------
Alnoor Cassim
Accounting Systems, Inc. (ASI)
------------------------------