#50518 FIPS and password storage schemes
Opened 7 months ago by mreynolds. Modified 6 months ago

Issue Description

This ticket is to discuss the various issues we face with FIPS and password storage schemes. We need to document all the known issues, and provide the necessary steps to move an existing deployment to FIPS, etc.

  • Release note FIPS issues with password schemes. Including replication, data initialization, and upgrade concerns.
  • dsconf should have a FIPS "prepare" task. E.g. set password storage schemes to FIPS approved scheme, and enable password upgrade on bind to reset passwords to FIPS approved scheme.
  • dsconf healthcheck should have a FIPS compliance check option

Metadata Update from @mreynolds:
- Custom field origin adjusted to None
- Custom field reviewstatus adjusted to None
- Issue set to the milestone: 1.4.2

6 months ago

Login to comment on this ticket.