From the documentation I can see that you can force PGP command line to use FIPS mode (FIPS140-2 approved algorithms only) using two possible settings.
--fips-mode|--fips on the command line itself.
or
PGP_FIPS_MODE=True
This tells the PGPsdk to run in FIPS mode.
I've also seen some comments on the forums about setting this in the PGPprefs.xml file but that was specifically in relation to it's use on PGP Desktop and adding the following to my PGPprefs.xml file has so far had no effect.
<key>FIPSmode</key>
<true></true>
The forum post referred to a ClientPrefs section but my file doesn't have one. Is it possible to set this mode in the prefs file for command line and if so how, or is it just easier to use the command line tag or environment variable?
Regards,
Chris Swallow
Technical Architect
Atos Origin IT Services (UK) Ltd