distributed in its entirety without modification. Rancher Kubernetes Cryptographic Library FIPS 140-2 Non-Proprietary Security Policy Document Version 1.1 January 4, 2021 +1 703.276.6050 FIPS 140-2 Security Policy Rancher Kubernetes Cryptographic Library Page 2 of 16 References Ref Full Specification Name Date [140] FIPS 140-2, Security Requirements 12/3/2002 [140AA] FIPS 140-2 Annex A: Approved Security Functions 6/10/2019 [140AC] FIPS 140-2 Annex C: Approved Random Number Generators 6/10/2019 [140AD] FIPS 140-2 Annex D: Approved Key

Stacks 15 Copyright © SUSE 2021 — SAP Data Analytics — HPC & AI/ML — SCEaaS — RKE2 FIPS Validated 140-2 Kubernetes — FinOps — DBaaS — STaaS — BaaS — DRaaS — Edge Here at SUSE, we cater to

Within HTTP/1.1. At this time no web browsers support RFC 2817. SSLFIPS Directive Description: SSL FIPS mode Switch Syntax: SSLFIPS on|off Default: SSLFIPS off Context: server config Status: Extension Module: org/rfc/rfc2817.txt 10.70. APACHE MODULE MOD SSL 671 This directive toggles the usage of the SSL library FIPS mode flag. It must be set in the global server context and cannot be configured with conflicting settings not support the FIPS mode flag, SSLFIPS on will fail. Refer to the FIPS 140-2 Security Policy document of the SSL provider library for specific requirements to use mod ssl in a FIPS 140-2 approved mode of

Within HTTP/1.1. At this time no web browsers support RFC 2817. SSLFIPS Directive Description: SSL FIPS mode Switch Syntax: SSLFIPS on|off Default: SSLFIPS off Context: server config Status: Extension Module: org/rfc/rfc2817.txt 840 CHAPTER 10. APACHE MODULES This directive toggles the usage of the SSL library FIPS mode flag. It must be set in the global server context and cannot be configured with conflicting settings not support the FIPS mode flag, SSLFIPS on will fail. Refer to the FIPS 140-2 Security Policy document of the SSL provider library for specific requirements to use mod ssl in a FIPS 140-2 approved mode of

Description: SSL FIPS mode Switch Syntax: SSLFIPS on|off Default: SSLFIPS off Context: server config Status: Extension Module: mod ssl This directive toggles the usage of the SSL library FIPS mode flag. It not support the FIPS mode flag, SSLFIPS on will fail. Refer to the FIPS 140-2 Security Policy document of the SSL provider library for specific requirements to use mod ssl in a FIPS 140-2 approved mode of of operation; note that mod ssl itself is not validated, but may be described as using FIPS 140-2 validated cryptographic module, when all components are assembled and operated under the guidelines imposed

或 "false" features.operators.openshift .io/fips-compliant 指定 Operator 是否接受底层平台的 FIPS- 140 配置，并可用于引导到 FIPS 模式的节 点。在这个模式中，Operator 及其管理（操 作）的任何工作负载都只调用为 FIPS-140 验 证提交的 Red Hat Enterprise Linux (RHEL) 加密库。 Kubernetes 注解必须是字符串。 具有基 具有基础架 架构功能注解的 功能注解的 CSV 示例 示例 其他 其他资源 源 为受限网络环境启用 Operator （断开连接模式） 支持 FIPS 加密 5.7.3.2. 弃用的基 弃用的基础架 架构功能注解 功能注解 从 OpenShift Container Platform 4.14 开始，注解的 operators.openshift annotations: features.operators.openshift.io/disconnected: "true" features.operators.openshift.io/fips-compliant: "false" features.operators.openshift.io/proxy-aware: "false" features.operators

Within HTTP/1.1. At this time no web browsers support RFC 2817. SSLFIPS Directive Description: SSL FIPS mode Switch Syntax: SSLFIPS on|off Default: SSLFIPS off Context: server config Status: Extension Module: org/rfc/rfc2817.txt 926 CHAPTER 10. APACHE MODULES This directive toggles the usage of the SSL library FIPS mode flag. It must be set in the global server context and cannot be configured with conflicting settings not support the FIPS mode flag, SSLFIPS on will fail. Refer to the FIPS 140-2 Security Policy document of the SSL provider library for specific requirements to use mod ssl in a FIPS 140-2 approved mode of

Within HTTP/1.1. At this time no web browsers support RFC 2817. SSLFIPS Directive Description: SSL FIPS mode Switch Syntax: SSLFIPS on|off Default: SSLFIPS off Context: server config Status: Extension Module: org/rfc/rfc2817.txt 912 CHAPTER 10. APACHE MODULES This directive toggles the usage of the SSL library FIPS mode flag. It must be set in the global server context and cannot be configured with conflicting settings not support the FIPS mode flag, SSLFIPS on will fail. Refer to the FIPS 140-2 Security Policy document of the SSL provider library for specific requirements to use mod ssl in a FIPS 140-2 approved mode of

Module Documentation 1850 pgcrypto 1850 Installing and Registering the Module 1851 Configuring FIPS Encryption 1851 Additional Module Documentation 1853 postgres_fdw 1853 Installing and Registering Supplied Modules. The pgcrypto extension was updated to support FIPS encryption via the pgcrypto.fips configuration parameter. See Configuring FIPS Encryption in the pgcrypto documentation. The diskquota module correctly. This issue is resolved. 30487 - Utility Commands On a Greenplum Database 6 system with FIPS enabled, Greenplum utility commands such as gpinitsystem returned the error "ERROR:root:code for

Module Documentation 1818 pgcrypto 1818 Installing and Registering the Module 1818 Configuring FIPS Encryption 1818 Additional Module Documentation 1820 postgres_fdw 1820 Installing and Registering Supplied Modules. The pgcrypto extension was updated to support FIPS encryption via the pgcrypto.fips configuration parameter. See Configuring FIPS Encryption in the pgcrypto documentation. The diskquota module correctly. This issue is resolved. 30487 - Utility Commands On a Greenplum Database 6 system with FIPS enabled, Greenplum utility commands such as gpinitsystem returned the error "ERROR:root:code for