Nexpose Security Scanner Cannot SSH Into FIPS-Enabled Servers.
Issue
The Nexpose security scanning software cannot SSH into servers to conduct its security sweep. Those remote servers had been made FIPS 140-2 compliant. Attempts to SSH from the Nexpose-running RHEL server using RHEL's OpenSSH client to those remote servers were successful.
Environment
- Red Hat Enterprise Linux
- Nexpose 6.1.2
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.