turn on suggestions
![]() Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
|
02-21-2014 06:45 AM
We are having issues with opening WebTools on all our SAN switches. We are running Java 7 update 51 and this is blocking the application from running. We receive a certificate error. Apparently update 51 checks for a certificate with 2048 bit.
A case has been logged with HP (These are HP Branded 8GB FC switches), but wanted to post in Brocade forums as well.
Anyone have an idae as to timeline?
Thank you,
Louis
02-22-2014 01:36 PM
try configuring security exception as documented at http://docs.oracle.com/javase/7/docs/technotes/guides/jweb/security/exception_site_list.html
02-24-2014 11:09 AM
Thank you for your reply.
I saw this article and tried the recommendations. Unfortunatly they made no difference
in our case. We are forced to use Jave7 update 51. I had thought maybe I could generate a self-signed Cert and import to switch and solve my problem, but no joy, either.
Regards,
Louis
03-05-2014 07:02 AM
There are 2 recent Java 7 updates to make life difficult. Java 7u40 had the change "Default x.509 Certificates Have Longer Key Length"
http://www.oracle.com/technetwork/java/javase/7u40-relnotes-2004172.html
which prevents older jar files from running due to short key length. The workaround for this is to edit your jdk.certpath.disabledAlgorithms setting in the java.security file (and do so on every Java update). The fix is for the vendor to sign the app with a longer key.
Java 7u51 introduced the "Missing required Permissions manifest attribute" error, documented here under "Require Permissions Attribute for High Security Setting"
http://www.oracle.com/technetwork/java/javase/7u51-relnotes-2085002.html
The workaround for this is to lower the Security Level setting in Java Control Panel, or add the URL to the Exception Site List. The fix is for the vendor to update the jar file manifest in line with new security requirements.
I wouldn't hold my breath waiting for either fix; even Oracle have broken a load of their own apps (ILO Remote Console etc.) with no update in sight.
03-10-2014 03:55 AM
Hi Louis,
Did you try to change RSA Key size to value 256 in java.security file?
regards