[Freeipa-users] IPA and FIPS 140-2
Rob Crittenden
rcritten at redhat.com
Thu Aug 4 16:37:18 UTC 2016
Michael Sean Conley wrote:
> Does ANYONE have any experience getting IPA to work with FIPS?
>
> We're trying desperately to get this going, as we have some requirements
> that the Identity Management Tool we choose must be FIPS 140-2 compliant.
No, it doesn't work in FIPS mode yet. If you open a support case with
Red Hat your case can be added to
https://bugzilla.redhat.com/show_bug.cgi?id=1125174
While most, if not all, of the individual components can run in FIPS
mode there are a lot of moving parts to coordinate to ensure they comply
with the FIPS Security Policy and to handle some corner cases in the
management framework.
rob
More information about the Freeipa-users
mailing list