FIPSMode

IMPORTANT: This parameter applies only to the separate FIPS-enabled packages for Red Hat Enterprise Linux (RHEL) 7 and RHEL8 platforms.

For these packages, the components use the system version of OpenSSL (expected to be in the 1.0.x series for RHEL7 and the 1.1.x series for RHEL8). You must download and install these FIPS-enabled components.

For IDOL version 13.0 and later, the standard IDOL components use OpenSSL3 to provide FIPS 140-2 support on both Windows and Linux. In this case, the FIPSMode parameter has no effect. For information about how to configure these components to enable FIPS, refer to the IDOL FIPS Enablement Technical Note.

Set FIPSMode to True to enable the FIPS-compliant cryptographic modules in your IDOL components.

IDOL uses a cryptographic module which complies with Federal Information Processing Standard 140-2 (FIPS 140-2). This standard defines the technical requirements that Federal Agencies must use for cryptographic-based security systems that protect sensitive or valuable data.

When you use SSL in FIPS mode, all encrypted ACI communication between all IDOL components and HTTPS traffic between IDOL and third parties (where SSL is supported by the third party) is secured using the FIPS validated OpenSSL Module.

For more information about how to set up and enable FIPS Mode, refer to the IDOL FIPS Enablement Technical Note.

Type: Booolean
Default: False
Required: No
Configuration Section: Service
Example: FIPSMode=True
See Also: