Sentinel uses the Mozilla NSS libraries that are provided by the operating system. Red Hat Enterprise Linux (RHEL) and SUSE Linux Enterprise Server (SLES) have different set of NSS packages.
The NSS cryptographic module provided by RHEL 6.3 and later is FIPS 140-2 validated. The NSS cryptographic module included in SLES 11 are not yet officially FIPS 140-2 validated, but work is in progress to get the SUSE module FIPS 140-2 validated. Once the validation is available, no necessary changes to Sentinel are anticipated to provide 'FIPS 140-2 Inside' on the SUSE platform.
For more information about RHEL FIPS 140-2 certification, see https://csrc.nist.gov/projects/cryptographic-module-validation-program/Certificate/2711 and https://csrc.nist.gov/projects/cryptographic-module-validation-program/Certificate/1837.
Sentinel requires the following 64-bit NSS packages to support FIPS 140-2 mode:
nspr-*
nss-sysinit-*
nss-util-*
nss-softokn-freebl-*
nss-softokn-*
nss-*
nss-tools-*
If any of these packages are not installed, you must install them before enabling FIPS 140-2 mode in Sentinel.
Sentinel requires the following 64-bit NSS packages to support FIPS 140-2 mode:
libfreebl3-*
mozilla-nspr-*
mozilla-nss-*
mozilla-nss-tools-*
If any of these packages are not installed, you must install them before enabling FIPS 140-2 mode in Sentinel.