The Red Hat Customer Portal has an article on configuring Tomcat for FIPS mode using NSS for RHEL6. One of the steps is to change the java.security file as follows
change the line from security.provider.4=com.sun.net.ssl.internal.ssl.Provider to security.provider.4=com.sun.net.ssl.internal.ssl.Provider SunPKCS11-NSS However, for OpenJDK 11 on RHEL 7 none of the security providers are com.sun.net.ssl.internal.ssl.Provider. What is the correct way to change this for OpenJDK 11? Greg Silverman Principal Software Engineer Veritas Technologies Santa Clara, CA
