X
Tippen Sie hierhin, um die Version dieser Website für Mobilgeräte aufzurufen.

Hilfeforum

Need to Enable FIPS Mode through Kickstart

Veröffentlicht

I founf the following documentation about enabling FIPS mode, just curious if there are more updated documentation since the screens are now different. Step 3 is easy using a script however step 1 no longer exists. Curious if it could be enabled then the profile saved and exported and brought into the new system allowing the configuration to stay. https://support.mozilla.org/en-US/kb/Configuring%20Firefox%20for%20FIPS%20140-2

I founf the following documentation about enabling FIPS mode, just curious if there are more updated documentation since the screens are now different. Step 3 is easy using a script however step 1 no longer exists. Curious if it could be enabled then the profile saved and exported and brought into the new system allowing the configuration to stay. https://support.mozilla.org/en-US/kb/Configuring%20Firefox%20for%20FIPS%20140-2
Zitieren

Mehr Details zum System

Installierte Plugins

Default from website only adding js and cfg to harden the about:config

Anwendung

  • User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.142 Safari/537.36

Weitere Informationen

cor-el
  • Top 10 Contributor
  • Moderator
17470 Lösungen 157890 Antworten
Veröffentlicht

I'm not sure what cipher suites (if any) you would have to disable in current Firefox releases because only a few are supported.

Enabling FIPS is still done in the security device manager found at the bottom of "Options/Preferences -> Privacy & Security".


I'm not sure what cipher suites (if any) you would have to disable in current Firefox releases because only a few are supported. Enabling FIPS is still done in the security device manager found at the bottom of "Options/Preferences -> Privacy & Security". ---- *https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/Reference/NSS_tools_:_modutil *https://en.wikipedia.org/wiki/Comparison_of_TLS_implementations *https://wiki.mozilla.org/FIPS_Validation
Hat Ihnen das weitergeholfen?
Zitieren

Fragesteller

With Red Hat 7.6 FIPS on, Mozilla firefox crashes every time at startup, since FIPS is enabled at boot/installation with isolinux.cfg/boot.cfg i need to know an easy way to enable FIPS for Firefox at boot since i am unable to go to "Options/Preferences -> Privacy & Security".


cor-el said

I'm not sure what cipher suites (if any) you would have to disable in current Firefox releases because only a few are supported. Enabling FIPS is still done in the security device manager found at the bottom of "Options/Preferences -> Privacy & Security".
With Red Hat 7.6 FIPS on, Mozilla firefox crashes every time at startup, since FIPS is enabled at boot/installation with isolinux.cfg/boot.cfg i need to know an easy way to enable FIPS for Firefox at boot since i am unable to go to "Options/Preferences -> Privacy & Security".'' cor-el [[#answer-1238342|said]]'' <blockquote> I'm not sure what cipher suites (if any) you would have to disable in current Firefox releases because only a few are supported. Enabling FIPS is still done in the security device manager found at the bottom of "Options/Preferences -> Privacy & Security". ---- *https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/Reference/NSS_tools_:_modutil *https://en.wikipedia.org/wiki/Comparison_of_TLS_implementations *https://wiki.mozilla.org/FIPS_Validation </blockquote>
Hat Ihnen das weitergeholfen?
Zitieren
cor-el
  • Top 10 Contributor
  • Moderator
17470 Lösungen 157890 Antworten
Veröffentlicht

I think that you would have to use the modutil tools to change this setting.

I think that you would have to use the modutil tools to change this setting. *https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/Reference/NSS_tools_:_modutil
Hat Ihnen das weitergeholfen?
Zitieren
Stellen Sie eine Frage

Sie müssen sich mit Ihrem Benutzerkonto anmelden, um auf Beiträge zu antworten. Bitte stellen Sie eine neue Frage, wenn Sie noch kein Benutzerkonto haben.