- To enable FIPS mode in ODBC, add EnableFIPS=1 to the connection
string.
- To enable FIPS mode in OLE DB, add EnableFIPS=true to the provider
string.
- To enable FIPS mode in ADO.NET, add EnableFIPS=true to the
connection string.
By default, the EnableFIPS property is disabled (set to false or 0).
Each client process can open only one type of connection. If one connection must be
FIPS, then all connections must use FIPS.
Note: The algorithm used by Sybase-proprietary password encryption is not FIPS compliant.
Therefore, when enabling FIPS mode, ensure that the server supports RSA password
encryption mode.
You may encounter the Error encountered while setting up security context
in these situations:
| FIPS independent |
Malformed trusted.txt file for an SSL
connection. Check the trusted.txt path and
file. |
| FIPS mode on |
- On Microsoft Windows, the driver did not get its preferred base
address, so the OpenSSL incore fingerprint check failed. You can
use Microsoft Process Explorer to view the base addresses of a
running process.
- The OpenSSL fingerprint failed for an unknown reason.
|
On Microsoft Windows, the drivers have a preferred base address to be loaded in memory.
The preferred base addresses are as follows:
- ODBC: 0xF800000
- OLE DB: 0xF500000
- ADO.NET: 0xF200000