Skip to content
ATO Pathways
Log In
Overview
Search
Catalogs
SCAP
OSCAL
Catalogs
Profiles
Documents
References
Knowledge Base
Platform Documentation
Compliance Dictionary
Platform Changelog
About
Catalogs
XCCDF
Guide to the Secure Configuration of Red Hat Enterprise Linux 8
System Settings
Installing and Maintaining Software
System and Software Integrity
Software Integrity Checking
Verify Integrity with AIDE
Configure AIDE to Use FIPS 140-2 for Validating Hashes
Configure AIDE to Use FIPS 140-2 for Validating Hashes
An XCCDF Rule
Details
Profiles
Prose
Configure AIDE to Use FIPS 140-2 for Validating Hashes
Medium Severity
By default, the
sha512
option is added to the
NORMAL
ruleset in AIDE. If using a custom ruleset or the
sha512
option is missing, add
sha512
to the appropriate ruleset. For example, add
sha512
to the following line in
/etc/aide.conf
:
NORMAL = FIPSR+sha512
AIDE rules can be configured in multiple ways; this is merely one example that is already configured by default.