Using a FIPS 140 Enabled System in Oracle® Solaris 11.2

Exit Print View

Updated: August 2014

Secure Shell as a FIPS 140 Consumer

Secure Shell (SSH) provides remote system access to Oracle Solaris systems at the initial installation. SSH is a consumer of the OpenSSL FIPS 140 module. As the administrator, you must explicitly enable SSH to run in FIPS 140 mode. For instructions, see Secure Shell and FIPS 140 in Managing Secure Shell Access in Oracle Solaris 11.2 . The instructions include the list of validated FIPS 140 algorithms.

Because SSH runs on the OpenSSL FIPS 140 module, if you try to use an algorithm that is not validated for the OpenSSL FIPS 140 provider, SSH will fail with an error. To configure SSH in FIPS 140 mode, see Example of Enabling Two Applications in FIPS 140 Mode on an Oracle Solaris System.