Home

 

SSLFIPSRequired (MQLONG)

This lets you specify that only FIPS-certified algorithms are to be used if the cryptography is executed in WebSphere MQ-provided software. If cryptographic hardware is configured, the cryptography modules used are those provided by the hardware product; these may or may not be FIPS-certified to a particular level depending on the hardware product in use.

The value is one of the following:

MQSSL_FIPS_NO

Use any CipherSpec supported on the platform in use. This is the default value.

MQSSL_FIPS_YES

Use only FIPS-certified cryptographic algorithms in the CipherSpecs allowed on all SSL connections from and to this queue manager.

This parameter is valid only on UNIX platforms and Windows.

To determine the value of this attribute, use the MQIA_SSL_FIPS_REQUIRED selector with the MQINQ call.

 

Home