Sslfipsmode
The sslfipsmode option specifies whether the client uses SSL Federal Information Processing Standards (FIPS) mode for Secure Sockets Layer (SSL) communications with the server. The default is no.
Supported clients
This option is supported on all clients.
Options File
Set this option in the client options file. You cannot specify it as a command-line parameter and you cannot set this option in a client options set.
Parameters
- No
- Specifies that the client does not use SSL FIPS mode for secure communications with the server. SSL in FIPS mode is supported only by version 6.3 and newer versions of the server. Set this client option to no if the client uses SSL to connect to a server that is not at V6.3, or newer.
- Yes
- Specifies that the client uses SSL FIPS mode for secure communications with the server. Setting this option to yes restricts SSL session negotiation to use only FIPS-approved cipher suites. SSL FIPS mode is only supported by the V6.3 (or newer) server.
Example
To enable SSL FIPS mode on the client:
SSLFIPSMODE yes