RHEL 8.x in the Red Hat Security Guide in Chapter 3.RHEL 7.x or CentOS 7.x in the Red Hat Security Guide in Chapter 9.You can learn more about setting your operating system to use FIPS mode from the operating system vendor's websites: You may be be able to use the CentOS packages on RHEL. Red Hat Enterprise Linux 8.0 through 8.7ĭocker only offers s390x (IBM Z) packages for RHEL 7 and 8.Red Hat Enterprise Linux 7.6 through 7.9.If you need the Splunk SOAR Automation Broker to run in FIPS mode, your containerization solution, either Docker or Podman, must be running on an operating system that supports FIPS mode: The Splunk SOAR Automation Broker can be run in FIPS mode, if the underlying operating system is in FIPS mode. In order for a security application such as to be considered FIPS compliant it must meet the standards specified by the National Institute of Standards and Technology (NIST) in the standard FIPS 140-2. See Add a Certificate Authority to the Splunk SOAR Automation Broker. If your enterprise is using a TLS intercepting proxy that replaces or modifies such certificates you might need to add the CA certificates for that proxy to the Automation Broker's list of trusted Certificate Authorities. The Splunk SOAR Automation Broker always validates the TLS certificate received from your Splunk SOAR (Cloud) or Splunk SOAR (On-premises) instance. The Splunk SOAR Automation Broker must be able to connect to TCP port 443 (HTTPS) on your Splunk SOAR (Cloud) or Splunk SOAR (On-premises) instance. The Splunk SOAR Automation Broker requires outbound/egress connectivity to your Splunk SOAR (Cloud) or Splunk SOAR (On-premises) instance. The Splunk SOAR Automation Broker initiates all communications. The Splunk SOAR Automation Broker does not require inbound network connections. To run the Splunk SOAR Automation Broker, your Docker or Podman host must have at least: If your organization must comply with FIPS requirements, you must use a version of Red Hat Enterprise Linux, CentOS, or Amazon Linux that supports FIPS mode. If you are using Ubuntu use version 14.04.6 LTS or later.If you are using CentOS use CentOS 7.2009 or later.Your Docker or Podman host can be any operating system supported by Docker or Podman. Podman versions 4.1.0 and later are supported.ĭocker containers run on a Docker or Podman host. If you are using Podman, you must use a version that supports Docker Compose. Docker versions 20.10.2 and later are supported. If you are using Docker, you must use a supported version of Docker. įor security reasons, only allow admin users to access the machine where the Splunk SOAR Automation Broker is installed and make sure to locate this machine behind a firewall.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |