[SERVER-2524] FIPS-Enabled Puppet Server Side Created: 2018/02/06  Updated: 2020/01/15

Status: Developing
Project: Puppet Server
Component/s: None
Affects Version/s: None
Fix Version/s: SERVER 6.y

Type: Epic Priority: Critical
Reporter: Josh Cooper Assignee: Unassigned
Resolution: Unresolved Votes: 0
Labels: None
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Issue Links:
Blocks
Relates
relates to PUP-7510 FIPS-Enabled Puppet Closed
relates to ENTERPRISE-1249 Puppet Master Installation on FIPS en... Closed
Epic Name: FIPS-Enabled Puppet Server Side
Template:
Team/s:
Froyo
Epic Status: To Do
QA Risk Assessment: Needs Assessment

 Description   

The problem is that customers using our Puppet and Puppet Enterprise packages cannot meet the FIPS 140-2 requirements because we roll our own OpenSSL and do not link against the OpenSSL provided with RHEL. This causes them to fail "FISMA High" compliance standards.

This epic is the place to gather the stream of work required to remediate this issue, although some implications (such as for puppet-server) will require tickets outside the PUP jira project.

See also PUP-7510 for FIPS-Enabled Puppet Agent


Generated at Fri Jan 24 23:37:27 PST 2020 using JIRA 7.7.1#77002-sha1:e75ca93d5574d9409c0630b81c894d9065296414.