Enable the EMS Server
Note:
The EMS server supports FIPS compliance only on the Linux and Windows platforms.
To enable FIPS 140-2 operations in the EMS server:
- Set the
fips140-2
parameter in the main configuration file totrue
. - Ensure that incompatible parameters, listed below, are not included in the server configuration files.
- Ensure that the
ssl_server_ciphers
parameter for the EMS server is configured to use a supported cipher suite.
When fips140-2
is enabled, on start-up the EMS server initializes in compliance with FIPS 140-2. If the initialization is successful, the EMS server prints a message indicating that it is operating in this mode. If the initialization fails, the server exits
(regardless of the
startup_abort_list setting).
Incompatible Parameters
In order to operate in FIPS compliant mode, you must not include these parameters in the tibemsd.conf file:
These parameters cannot be included in the routes.conf file: