securityUtility configureFIPS

The securityUtility configureFIPS command configures FIPS 140-3 for servers, clients, and tools.

Usage example

Enable FIPS 140-3 across all servers, clients, and tools:

securityUtility configureFIPS

Syntax

Run the command from the path_to_liberty/wlp/bin directory.

securityUtility configureFIPS [options]

Options

Options for the securityUtility configureFIPS command
OptionDescription

--server=server_name

Configures FIPS 140-3 at a specified server.

--client=client_name

Configures FIPS 140-3 at a specified client.

--customProfileFile=name

For IBM Semeru Runtime, creates a custom profile file with a specified name or at a specified location. The default name of the custom profile file is FIPS140-3-Liberty-Application.properties.

  • If this option is not provided, the custom profile file is located in the /etc directory of your Liberty installation.

  • If this option is not provided and the --server option is used, the custom profile file is located in the /security directory of the specified server.

  • If this option is not provided and the --client option is used, the custom profile file is located in the /security directory of the specified client.

--disable

Disables FIPS 140-3 from all servers and clients that were not individually configured. Use the --server and --client options with the --disable option to disable FIPS 140-3 from specified servers and clients respectively.

Exit codes

The following exit codes are available for the securityUtility configureFIPS command:

Exit codes for the securityUtility configureFIPS command
CodeExplanation

0

This code indicates successful completion of the requested operation.

1

This code indicates a generic error.

2

This code indicates that the server is not found.

3

This code indicates that the client is not found.

4

This code indicates that the path can not be created.