Secure Shell as a FIPS 140-2 Consumer

Oracle Solaris 11.4 provides Secure Shell for remote access. Secure Shell in Oracle Solaris sets FIPS 140-2 mode dynamically by calling the OpenSSL libraries that link to Oracle OpenSSL FIPS Provider.

The administrator does not explicitly enable FIPS 140-2 mode in a Secure Shell configuration file. Rather, the administrator enables Secure Shell to dynamically load OpenSSL to provide the cryptography for Secure Shell.

For instructions, see Secure Shell and FIPS 140-2 in Managing Secure Shell Access in Oracle Solaris 11.4. The instructions list the validated FIPS 140-2 algorithms that Secure Shell supports.

For a sample configuration, see Example of Running in FIPS 140-2 Mode on an Oracle Solaris 11.4 System.

See also:

• sshd(8) and ssh(1) man pages

• sshd_config(5) and ssh_config(5) man pages

• ssh-keygen(1) man page