Show Table of Contents
10.2.2. Enabling FIPS Mode for Applications Using NSS
The procedure for enabling FIPS mode on Red Hat Enterprise Linux systems described in Section 10.2.1, “Enabling FIPS Mode” does not affect the FIPS state of Network Security Services (NSS), and thus does not affect applications using NSS. When required, the user can switch any NSS application to FIPS mode using the following command:
~]# modutil -fips true -dbdir dir
Replace dir with the directory specifying the NSS database used by the application. If more than one NSS application uses this database, all these applications will be switched into FIPS mode. The applications have to be restarted for the NSS FIPS mode to take effect.
Provided that the nss-sysinit package is installed, and the application whose NSS database you need to locate opens the
/etc/pki/nssdb file, the path to the user NSS database is ~/.pki/nssdb.
To enable FIPS mode for the Firefox web browser and the Thunderbird email client, go to → → → → → .
Where did the comment section go?
Red Hat's documentation publication system recently went through an upgrade to enable speedier, more mobile-friendly content. We decided to re-evaluate our commenting platform to ensure that it meets your expectations and serves as an optimal feedback mechanism. During this redesign, we invite your input on providing feedback on Red Hat documentation via the discussion platform.