Chapter 9. Removed features

The FUTURE system-wide cryptographic policy no longer allows traditional, non-post-quantum, key exchange (KEX) methods. With this update, you can use only hybrid Module-Lattice-Based Key-Encapsulation Mechanism (ML-KEM) key exchange algorithms.

This aligns with the target use of the FUTURE policy in controlled, isolated deployments and impacts interoperability with the public internet. For example, when you switch RHEL 10 to the FUTURE policy, you cannot connect to the cdn.redhat.com network. Also, Java clients cannot connect to TLS servers running in FUTURE.

Note that upcoming RHEL releases might further restrict signature algorithms in certificates and signatures to allow only post-quantum cryptography (PQC) in the FUTURE policy.

Jira:RHEL-93769

The vi command no longer launches the Vim editor when both vim-minimal and vim-enhanced are installed. Instead, the vi command starts the minimal editor from vim-minimal. To use Vim, run the vim command.

Jira:RHEL-145868^[1]

The ipa_enable_dns_sites option in SSSD is removed and is no longer available in RHEL 10.2. Because the corresponding server-side functionality was never implemented, the option was non-functional. It has been removed to simplify configuration and avoid confusion.

Jira:RHEL-127792

With Windows Server 2012 R2 reaching its end-of-life, Red Hat aligns supported platform versions with Microsoft support lifecycles and has removed support for this version for Active Directory trusts.

Jira:RHELDOCS-22174^[1]