Probably not right away. Getting this fixed/working will not get prioritized on the development side for a few weeks. I was tasked with confirming that we don’t have a platform side problem which I did by confirming I can connect to postgresql using psql on a FIPS enabled host.
I was hoping that maybe there was something simple like the version of postgres or the jdbc driver but it sounds like it may be more than that.
Once our developers are tasked with actively looking into this, I will re-post. I do know that we were using MD5 and switched to scram-sha-256 fairly recently (maybe 6 months ago). But, up until really recently, we were not running on a FIPS enabled host. Since FIPS is now enabled, the cryptography enforcement is actually occurring and we are seeing this problem.
Thank you,
Becky
From: Rob Sargent <robjsargent@gmail.com>
Sent: Tuesday, March 22, 2022 10:25 AM
To: pgsql-jdbc@lists.postgresql.org
Subject: [EXTERNAL] Re: Java client connection problem on FIPS enabled hosts (with password_encryption = scram-sha-256)
We definitely don’t have something correct on the Java side. Are there any experienced java users out there who can recommend the correct jdbc version and what we need to do on the Java side to support “password_encryption = scram-sha-256” for Postgres?
I am not a java develop but am responsible for the platform we run our application on so I can forward any java specifics to our development team(s).
Thank you,
Becky McDermott
Can you get the dev team to share their set-up?
