openstack/tripleo-heat-templates
Code Issues Proposed changes
93c6665a36
tripleo-heat-templates/environments/fips.yaml
Ade Lee ff7bc29c77 Added rabbit FIPS flag to FIPS env fle 
FIPS requires rabbit to start up in FIPS mode or it will generate an
ed25519 key by default on startup.  The Rabbit FIPS flag sets the
appropriate parameters for this to happen.

Change-Id: I755ef460ca06fdc5bed3a05bba75c63b288b3af8
2022-01-27 03:56:17 +00:00

10 lines
273 B
YAML
Raw Blame History

parameter_defaults:
# Set ISCSI Chap algorithms to specifically disallow MD5
IscsidCHAPAlgorithms: 'SHA3-256,SHA256,SHA1'
# Set SnmpdReadonlyUserAuthType to not be 'MD5'
SnmpdReadonlyUserAuthType: 'SHA'
# Add RabbitAdditionalErlArgs for FIPS
RabbitFIPS: true
View Git Blame Copy Permalink