Sslfipsmode

The sslfipsmode option specifies whether the client uses SSL Federal Information Processing Standards (FIPS) mode for Secure Sockets Layer (SSL) communications with the server. The default is no.

Supported clients

This option is supported on all clients.

Options File

Set this option in the client options file. You cannot specify it as a command-line parameter and you cannot set this option in a client options set.

Syntax

Read syntax diagramSkip visual syntax diagram
                  .-No--.   
>>-SSLFIPSMODE = -+-----+--------------------------------------><
                  '-Yes-'   

Parameters

No
Specifies that the client does not use SSL FIPS mode for secure communications with the server. SSL in FIPS mode is supported only by version 6.3 and newer versions of the server. Set this client option to no if the client uses SSL to connect to a server that is not at V6.3, or newer.
Yes
Specifies that the client uses SSL FIPS mode for secure communications with the server. Setting this option to yes restricts SSL session negotiation to use only FIPS-approved cipher suites. SSL FIPS mode is only supported by the V6.3 (or newer) server.

Example

To enable SSL FIPS mode on the client:
SSLFIPSMODE yes