In Hive-2400 testing, it was found:

Test case 1(Done by Jianping):

Hub cluster: 4.16.0-0.nightly-2024-05-23-173505 + FIPS TRUE

Spoke Cluster: 4.16.0-0.nightly-2024-05-23-173505 + FIPS FALSE

vCenter: vcenter.devqe.ibmc.devcluster.openshift.com

Test result: CD install failed, no provision pod created, reported the following error

time="2024-05-30T02:26:02.372Z" level=error msg="failed to set vSphere root CAs" clusterDeployment=e2e-test-hive-76rfz/cd-32026-8kc0 controller=clusterDeployment error="invalid certificate '/tmp/rootcacerts883580253', cannot be used as a trusted CA certificate" reconcileID=sggt8cjt 

Test case 2(Done by David):
Hub cluster: 4.15.14 + FIPS TRUE
Spoke Cluster: 4.16.0-rc.2 + FIPS TRUE
vCenter: ???
Test result: CD install was successful

Need double check if vCenter in test case 2 is enabled FIPS.

If yes, then the following need to be addressed:

1. Hive needs to provide the guideline about the FIPS enable on hub and vCenter for sample if hub cluster is with FPIS enabled, then it can only manage the vCenters with FIPS enabled.

2. Hive QE will work on to prepare the test env with vCenter with FIPS enabled.