Is version X of Red Hat Enterprise Linux FIPS 140-2 certified/validated/compliant?

Solution Verified - Updated -


  • When Red Hat gets particular packages to pass FIPS validation with NIST, are the package versions after that also considered FIPS-validated or FIPS-certified?

  • There's a Red Hat knowledge article that details how to configure a RHEL5 system to be FIPS 140-2 compliant; however, it recommends using very old versions of packages. Does this mean one must use those old packages from 2010 in order to run a RHEL5 box in FIPS mode?


  • Red Hat Enterprise Linux 7
  • Red Hat Enterprise Linux 6
  • Red Hat Enterprise Linux 5

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content