[p_l]

Last I checked, CentOS Stream is not FIPS certified, and CentOS 8 is already past EOL, which makes it not allowed for FedRAMP.

And IIRC CentOS8 FIPS certificate was taken out by Red Hat (wouldn't have had to implement our own FIPS handling on CentOS7 if not for that move).

[tiberious726]

Centos was never FIPS certified https://csrc.nist.gov/projects/cryptographic-module-validati...

[p_l]

There was a time when RHEL FIPS certificate also applied to CentOS, and one of my former $DAYJOBs depended on that for a long time. Then Red Hat pulled the cert, and later there was a mad scramble to get rid of CentOS because of the EOL :)

[tiberious726]

Oh wow! Do happen to have a link to the old cert? I /really/ looked for a way for us to stay on centos when we started doing this kind of stuff.

[Twirrim]

Doh, sorry. Forgot it only hit Red Hat 8 (and derivatives).