We are looking to install a software gateway on RedHat 8 which has FIPS mode enabled at the OS level.

When installing the gateway rpm we receive the following error:

# rpm -ivh ssg-10.1.00-11620.noarch

package ssg-10.1.00-11620.noarch does not verify: no digest

CA API Gateway 10.x, 11.0

RedHat 8 requires more strict packaging signing with SHA256 when FIPS is enabled.

The current work around prior to 11.0 CR02 is to first install and configure your software gateway.  Once that is complete you can then enable FIPS mode at the OS level.

Starting with 11.0 CR02 they enhanced the signing digest used to create the verification that would be FIPS compliant.

https://techdocs.broadcom.com/us/en/ca-enterprise-software/layer7-api-management/api-gateway/11-0/release-notes/new-features-and-enhancements.html#concept.dita_newfeatures_refresh_gw10cr2_11cr2

F135656