Uploaded image for project: 'Puppet Server'
  1. Puppet Server
  2. SERVER-2524

FIPS-Enabled Puppet Server Side

    XMLWordPrintable

    Details

    • Type: Epic
    • Status: Open
    • Priority: Critical
    • Resolution: Unresolved
    • Affects Version/s: None
    • Fix Version/s: SERVER 6.y
    • Component/s: None
    • Labels:
      None
    • Epic Name:
      FIPS-Enabled Puppet Server Side
    • Template:
    • Team/s:
      Froyo
    • Epic Status:
      To Do
    • QA Risk Assessment:
      Needs Assessment

      Description

      The problem is that customers using our Puppet and Puppet Enterprise packages cannot meet the FIPS 140-2 requirements because we roll our own OpenSSL and do not link against the OpenSSL provided with RHEL. This causes them to fail "FISMA High" compliance standards.

      This epic is the place to gather the stream of work required to remediate this issue, although some implications (such as for puppet-server) will require tickets outside the PUP jira project.

      See also PUP-7510 for FIPS-Enabled Puppet Agent

        Attachments

          Issue Links

            Activity

              People

              Assignee:
              Unassigned
              Reporter:
              josh Josh Cooper
              Votes:
              0 Vote for this issue
              Watchers:
              4 Start watching this issue

                Dates

                Created:
                Updated:

                  Zendesk Support