FIPS Status Check

Verify compliance with FIPS 140-2 security requirements for cryptographic modules.

For NGINX Plus, the cryptographic boundary includes all functionality that is implemented by the http_ssl, http_v2, stream_ssl, and mail_ssl modules. These modules implement SSL and TLS operations for inbound and outbound connections which use HTTP, HTTP/2, TCP, and mail protocols.

Installation Instructions

1. Install the FIPS module.

   For Amazon Linux, CentOS, Oracle Linux, and RHEL:

   $ yum install nginx-plus-module-fips-check
   

   For Debian and Ubuntu:

   $ apt-get install nginx-plus-module-fips-check
   

   For SLES:

   $ zypper install nginx-plus-module-fips-check
   

   For Alpine:

   $ apk add nginx-plus-module-fips-check
   

2. Put the load_module directive in the top‑level (“main”) context of NGINX Plus configuration file, nginx.conf:

   load_module modules/ngx_fips_check_module.so;
   

3. Perform additional configuration as required by the module.

4. Reload NGINX Plus to enable the module:

   $ nginx -t && nginx -s reload
   

More Info

• FIPS Compliance for NGINX Plus

• NGINX FIPS Status Check Module Reference

• NGINX Dynamic Modules

• NGINX Plus Technical Specifications