-
Notifications
You must be signed in to change notification settings - Fork 239
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[WIP]: Enable FIPs mode with a script #1626
Conversation
Please not that a ref will be added for crypto policies once this PR is merged >>#1545 |
Pdf version attached |
Thanks! All the documentation related to |
I am confused about this: so, NIST is currently reviewing all the modules for SLES 15 SP4 and we hope to have it in the next months soon as certified. You can run the same binaries on SLES 15 SP5 and this will be compliant when the certification for sp6 is public. And for SLES 15 SP6 we will re-certify this, but atm neither compliance nor certification can be claimed for SP6. At least it is not planned (we will discuss this internally) This has to be rewritten therefore, i am sorry :( |
@denknorr Can you please clarify what we need to add in the note for SP6 or how it should be phrased , wrt to the mail chain : |
The idea would be that SP5 can be run in compliant mode with the fips binaries from SP4 (with installing the fips pattern) and for SP6 that we will recertify the binaries and that currently there are no fips binaries for sp6. |
So for SP6, can we add this note: |
Closing this PR due to merge conflicts and created a new PR with all tech feedback implemented. |
PR creator: Description
The scope of this PR is to:
PR creator: Are there any relevant issues/feature requests?
PR creator: Which product versions do the changes apply to?
When opening a PR, check all versions of the documentation that your PR applies to.
main
, no backport necessary)PR reviewer only: Have all backports been applied?
The doc team member merging your PR will take care of backporting to older documents.
When opening a PR, do not set the following check box.