FIPS installation only
As part of the FIPS installation, the cryptographic modules must be updated on all of
your IBM
QRadar
appliances.
Before you begin
Go to Fix Central to obtain the
7.5.0-QRADAR-QRSIEM-FIPS-Crypto-Modules which contains the following files:
- QRadar FIPS OpenSSL RPM
- QRadar FIPS IBMJCEPlusFIPS compressed file
Procedure
-
On each host, install the QRadar FIPS OpenSSL rpm by running the following command:
yum
install <QRadar FIPS OpenSSL>.rpm
.
-
Complete the following steps to install the QRadar FIPS IBMJCEPlusFIPS compressed file.
- To extract the compressed files, type the following command:
tar -xvf
<QRadar FIPS IBMJCEPlusFIPS>.tar
to extract the compressed files.
- Run the following commands to back up the existing files.
cp /opt/ibm/java-x86_64-80/jre/lib/icc/C/icc/icclib/ICCSIG.txt
/opt/ibm/java-x86_64-80/jre/lib/icc/C/icc/icclib/ICCSIG.txt.bak
cp /opt/ibm/java-x86_64-80/jre/lib/icc/C/icc/icclib/libicclib084.so
/opt/ibm/java-x86_64-80/jre/lib/icc/C/icc/icclib/libicclib084.so.bak
- Copy the new updated files to their correct location by typing the following
commands.
cp ICCSIG.txt /opt/ibm/java-x86_64-80/jre/lib/icc/C/icc/icclib/ICCSIG.txt
cp libicclib084.so
/opt/ibm/java-x86_64-80/jre/lib/icc/C/icc/icclib/libicclib084.so
-
Restart each appliance to ensure that the new files were created successfully.