Your browser does not allow storing cookies. We recommend enabling them.

Tectia

Enabling FIPS Mode Using Configuration File

To enable FIPS mode on Unix:

  1. Open the Connection Broker configuration file ssh-broker-config.xml that you want to modify (see the section called “Connection Broker Files”.

  2. Under the general element, modify the crypto-lib element by settings its value to fips.

  3. Ensure that the cryptographic algorithms defined in the configuration file for the default-settings element and the profiles element are compatible with FIPS mode. For FIPS-compatible algorithms, see ciphers, macs and kexs.

  4. Save the configuration file and reload the file to Connection Broker.


 

 
PrivX
 

 

 
What to read next:

  • Reduce Secure Shell risk. Get to know the NIST 7966.



    The NISTIR 7966 guideline from the Computer Security Division of NIST is a direct call to action for organizations regardless of industry and is a mandate for the US Federal government.
    Download now
  • ISACA Practitioner Guide for SSH



    With contributions from practitioners, specialists and SSH.COM experts, the ISACA “SSH: Practitioner Considerations” guide is vital best practice from the compliance and audit community.
    Download now