RHEL NSS authentication fails in FIPS mode only!
Hi all,
I am using a RHEL 5.4 workstation and have all the necessary certificates stored in NSS (3.12.3.99.3-1.el5_3.2). With FIPS disabled on NSS, pkcs11_inspect and pklogin_finder work great. However, when I enable fips and use the same tools I receive an INVALID_SIGNATURE error when trying to validate the certificates. The certificates I am using are all DoD issued certificates so I know the actual digital signature is correct.
I have run out of ideas and can't understand where this problem is coming from. Any suggestions?
Thanks,
Breds
|