SSLFIPSREQUIRED

This property determines whether an SSL connection must use a CipherSuite that is supported by the IBM® Java JSSE FIPS provider (IBMJSSEFIPS).

Note: On UNIX, Linux®, and Windows, IBM MQ provides FIPS 140-2 compliance through the IBM Crypto for C cryptographic module. The certificate for this module has been moved to the Historical status. Customers should view the IBM Crypto for C certificate and be aware of any advice provided by NIST. A replacement FIPS 140-3 module is currently in progress and its status can be viewed by searching for it in the NIST CMVP modules in process list.

Applicable Objects

ConnectionFactory, QueueConnectionFactory, TopicConnectionFactory, XAConnectionFactory, XAQueueConnectionFactory, XATopicConnectionFactory

JMS administration tool long name: SSLFIPSREQUIRED

JMS administration tool short name: SFIPS

Programmatic access

Setters/getters

MQConnectionFactory.setSSLFipsRequired()
MQConnectionFactory.getSSLFipsRequired()

Values

NO: An SSL connection can use any CipherSuite that is not supported by the IBM Java JSSE FIPS provider (IBMJSSEFIPS).; This is the default value. In programs, use false.
YES: An SSL connection must use a CipherSuite that is supported by IBMJSSEFIPS.; In programs, use true.