Hello Christian, It is an standard installation.
[root@server2 ~]# cat /proc/sys/crypto/fips_enabled 0 Thanks & Regards. -----Original Message----- From: Christian Heimes <chei...@redhat.com> Sent: Friday, January 10, 2020 13:13 To: FreeIPA users list <freeipa-users@lists.fedorahosted.org>; Florence Blanc-Renaud <f...@redhat.com> Cc: SOLER SANGUESA Miguel <sol...@unicc.org> Subject: Re: [Freeipa-users] Re: Problem adding a RHEL 8.1 client On 10/01/2020 12.49, SOLER SANGUESA Miguel via FreeIPA-users wrote: > Seems that I have found the problem. It is TLSv1.3, I have tried to connect > with TLSv1.2 and connection was OK: Hi, is the IPA server on RHEL 7.7 in FIPS mode or is it a standard installation? There have been known issues with FIPS mode, NSS (crypto library used by 389-DS), and TLS 1.3 in the past. I'm going to create a reproducer setup and try to come up with a workaround now. Christian -- Christian Heimes Principal Software Engineer, Identity Management and Platform Security Red Hat GmbH, http://www.de.redhat.com/, Registered seat: Grasbrunn, Commercial register: Amtsgericht Muenchen, HRB 153243, Managing Directors: Charles Cachera, Laurie Krebs, Michael O'Neill, Thomas Savage _______________________________________________ FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/freeipa-users@lists.fedorahosted.org
