How to enforce a system-wide crypto policy (specific protocols, MACs, ciphers) in RHEL

Solution Verified - Updated 2016-11-01T13:38:46+00:00 -

Issue

How can we enforce a system-wide crypto policy in RHEL? For example: mandating exclusive use of a TLS protocol version like TLSv1.2 for all applications, or disabling SHA-1 as a signature algorithm or MAC, or specifying specific ciphersuites.

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Here are the common uses of Markdown.

Code blocks

~~~
Code surrounded in tildes is easier to read
~~~

Links/URLs

[Red Hat Customer Portal](https://access.redhat.com)