Sun OpenSSO Enterprise 8.0 Update 1 Release Notes

Configuring the NSS Database in FIPS Mode

Configure the NSS database in FIPS mode. For example, using the modutil command:

modutil -fips true -dbdir location-of-your-nss-database

For information about modutil, see http://www.mozilla.org/projects/security/pki/nss/tools/modutil.html.

To Enable the FIPS-140 Standard for Web Server 7.0

To enable the FIPS-140 Standard for Web Server 7.0, you must change the certdb password and enable FIPS mode as true. (By default, Web Server 7.0 sets the password to blank for its certdb.)

Set the password for the internal PKCS11 token using either the Web Server 7.0 Admin Console or CLI command.