.`fips-mode-setup` is deprecated The `fips-mode-setup` tool, which switches the system to FIPS mode, is deprecated in RHEL 9. You can still use the `fips-mode-setup` command to check whether FIPS mode is enabled. To operate a system compliant with FIPS 140, install a system in FIPS mode in one of the following ways: * Add the `fips=1` option to the kernel command line during the RHEL installation. See the link: https://docs.redhat.com/en/documentation/red_hat_enterprise_linux/9/html/boot_options_for_rhel_installer/kickstart-and-advanced-boot-options_boot-options-for-rhel-installer#types-of-boot-options_kickstart-and-advanced-boot-options [Editing boot options] chapter in the Boot options for RHEL Installer document for more information. * Create a FIPS-enabled image with RHEL image builder by adding the `fips=yes` directive to the `[customizations]` section of its blueprint. * Create a disk image with the `bootc-image-builder` tool or install the system by using the `bootc install-to-disk` tool with a Containerfile that follows the link: https://docs.redhat.com/en/documentation/red_hat_enterprise_linux/9/html/using_image_mode_for_rhel_to_build_deploy_and_manage_operating_systems/enabling-the-fips-mode-while-building-a-bootc-image#enabling-the-fips-mode-by-using-bootc-image-builder-tool_enabling-the-fips-mode-while-building-a-bootc-image [example] in the Using image mode for RHEL document to add the `fips=1` kernel command line flag and switch the system-wide cryptographic policy to `FIPS`. The `fips-mode-setup` tool will be removed in the next major release.