NGINX Documentation

FIPS Status Check

Verify compliance with FIPS 140-2 security requirements for cryptographic modules. For NGINX Plus, the cryptographic boundary includes all functionality that is implemented by the http_ssl, http_v2, stream_ssl, and mail_ssl modules. These modules implement SSL and TLS operations for inbound and outbound connections which use HTTP, HTTP/2, TCP, and mail protocols.

Installation Instructions

  1. Install the FIPS module.

    For Amazon Linux, CentOS, Oracle Linux, and RHEL:

    $ yum install nginx-plus-module-fips-check
    

    For Debian and Ubuntu:

    $ apt-get install nginx-plus-module-fips-check
    

    For SLES:

    $ zypper install nginx-plus-module-fips-check
    

    For Alpine:

    $ apk add nginx-plus-module-fips-check
    
  2. Put the load_module directive in the top‑level (“main”) context of NGINX Plus configuration file, nginx.conf:

    load_module modules/ngx_fips_check_module.so;
    
  3. Perform additional configuration as required by the module.

  4. Reload NGINX Plus to enable the module:

    $ nginx -t && nginx -s reload
    

More Info