Created attachment 1451927 [details] Error during install of Ansible Tower Description of problem: Ansible Tower is not supported on FIPS-mode enabled hosts. Version-Release number of selected component (if applicable): Current (3.2.5) How reproducible: Repeatable and Reproducible Steps to Reproduce: 1. Install Ansible Tower Actual results: -- Tower fails to install Expected results: -- Tower installs and runs for all components and features
Making BZ public. Unsure why it was marked internal.
Note there are many sub elements in this: - When making SAML assertions, Ansible must use FIPS validated random numbers in the generation of SessionIndex in the SAML element AuthnStatement - Ansible must utilize FIPS-validated cryptographic modules when generating hashes - When protecting information, such as through Ansible Vault, FIPS validated crypto must be used - Ansible must utilize FIPS validated cryptographic modules when signing application components/files/objects Open question to engineering.... how would you like this to be broken down? Should this BZ become a parent/tracker bug, with subelements linked to it? Something else?
You've got the wrong links, this is tracked here: https://github.com/ansible/tower/issues/644. In any case, this has been discussed, and BZ is not what is used for tracking Tower issues. If someone from the PubSec team wants access to the Tower issue repo, let us know.
Link is dead, please fix for people who are interested in tracking this case.
Link is not dead, it's a private GitHub repo. Standard way for customers to track RFEs is through support.