Enable FIPS
- Last Updated: March 6, 2025
- 1 minute read
- Hybrid Data Pipeline
- Version 4.6
- Documentation
Attribute
EnableFIPS (EF)
Purpose
Determines whether the OpenSSL library uses cryptographic algorithms from the FIPS provider or the default provider.
Valid Values
0 | 1
Behavior
If set to 0 (Disabled), the OpenSSL library uses cryptographic algorithms from the default provider.
If set to 1 (Enabled), the OpenSSL library uses cryptographic algorithms from the FIPS provider.
Notes
- The FIPS provider is supported only on Windows 64-bit and Linux 64-bit platforms. On the 32-bit platforms, the driver uses the default provider of the OpenSSL 3.0 library.
- Do not set the Truststore Password connection option when using the FIPS provider. The truststore password uses the PKCS12KDF algorithm, which is not an approved FIPS algorithm. Hence, it must not be specified when using the FIPS provider.
- When TLS/SSL and FIPS are enabled for communication between an ODBC client application and Hybrid Data Pipeline, the server certificate must be encrypted with an OpenSSL 3.0-compliant cryptographic algorithm.
Default
0 (Disabled)
GUI Tab
Security tab