Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [fips-140-2]

A Federal Information Processing Standard (FIPS) is a publicly announced standardization developed by the United States federal government for use in computer systems by all non-military government agencies and by government contractors, when properly invoked and tailored on a contract.

A Federal Information Processing Standard (FIPS) is a publicly announced standardization developed by the United States federal government for use in computer systems by all non-military government agencies and by government contractors, when properly invoked and tailored on a contract.

(source: Wikipedia)

23 questions
0
votes
1 answer

RHEL6 - Fips140-2 - Apache fails when trying to start with SSLFIPS on directive

Hello server warriors! I have a situation where I need to make my RHEL6 system FIPS140-2 compliant...which includes apache and mod_ssl. However, after I make the server run in "fips 140 mode" Apache does not recognize the SSLFIPS directive...and…
Mike Broyles
  • 31
  • 1
  • 6
0
votes
5 answers

Configuring IIS7 for TLS 1.0 only

I have been tasked with configuring an IIS7 server to accept TLS 1.0 HTTPS connections only. I have come up with the following list of cipher suites which I have deduced are TLS…
tomfanning
  • 3,378
  • 7
  • 34
  • 34
0
votes
0 answers

OpenSSL 3.0 generating p12 certificate issue with FIPS

I am running the OpenSSL command to generate bundle.p12 with -legacy option. RHEL 9 FIPS Enabled setup. openssl pkcs12 -export -legacy -in cacert.pem -inkey cakey.pem -out bundle.p12 Error creating PKCS12 structure for…
user1631072
  • 1
  • 1
  • 1
0
votes
1 answer

Build OpenSSL 1.1.1q with FIPS in RHEL 8

Is it possible to build OpenSSL 1.1.1q with Fips support in RHEL 8? In RHEL 8.6, the supported version is OpenSSL 1.1.1k FIPS. But I want to upgrade this OpenSSL to the latest. Thank you in advance.
user1631072
  • 1
  • 1
  • 1
0
votes
1 answer

Docker container CMAKE gives crypto/fips/fips.c:153: OpenSSL internal error: FATAL FIPS SELFTEST FAILURE - dracut-fips crypto.fips_enabled = 1

Getting crypto/fips/fips.c:153: OpenSSL internal error: FATAL FIPS SELFTEST FAILURE when dracut-fips package is installed and sysctl -a shows crypto.fips_enabled = 1 Restriction: Can not disable dracut-fips package or crypto.fips_enable setting in…
AKS
  • 115
  • 1
  • 8
0
votes
0 answers

RHEL 8 Ansible playbooks not working with FIPS enabled

I have two sets of Linux VMs in a GCP (Google cloud) environment: Debian9 and RHEL8. The RHEL8 environment is FIPS-140 enabled, due to security/compliance requirements. None of our Ansible playbooks work with the FIPS-enabled RHEL VMs, but still…
Robert Campbell
  • 3
  • 1
-3
votes
1 answer

Enable FIPS mode in Cisco 2911 router

Dear Michael, I wish to know how to enable FIPS mode in Cisco 2911 router with Firmware version 15.1(4)M4? Thanks in advance for the reply.
1909
  • 1
  • 2
-5
votes
1 answer

Requirements for hosting a FIPS 140-2 level 1 application

I am making an application that needs to be FIPS 140-2 level 1 compliant (not certified). I was wondering if there were any special requirements for the host we chose for our app server/crypto-module. Is standard cloud hosting okay? Is colocation…
TheCatWhisperer
  • 133
  • 1
  • 1
  • 8
1
2