[SERVER-2524] FIPS-Enabled Puppet Server Side Created: 2018/02/06 Updated: 2020/02/14
|Fix Version/s:||SERVER 6.y|
|Remaining Estimate:||Not Specified|
|Time Spent:||Not Specified|
|Original Estimate:||Not Specified|
|Epic Name:||FIPS-Enabled Puppet Server Side|
|Epic Status:||To Do|
|QA Risk Assessment:||Needs Assessment|
The problem is that customers using our Puppet and Puppet Enterprise packages cannot meet the FIPS 140-2 requirements because we roll our own OpenSSL and do not link against the OpenSSL provided with RHEL. This causes them to fail "FISMA High" compliance standards.
This epic is the place to gather the stream of work required to remediate this issue, although some implications (such as for puppet-server) will require tickets outside the PUP jira project.