Applying the JCE Unlimited Strength Jurisdiction Policy Files

Management and Security Server requires the Java Cryptography Extension (JCE) Unlimited Strength Policy Files. "Unlimited strength" policy files contain no restrictions on cryptographic strengths, in contrast to the "strong" but limited cryptography policy files bundled in a JRE.

When you use an automated installer to install Management and Security Server, the JCE Unlimited Strength Policy Files are applied for you.

The JCE Unlimited Strength Jurisdiction Policy Files must be applied when you

  • manually install Management and Security Server.

  • upgrade your JRE (each time).

To apply the policy files:

  1. Download the Java Cryptography Extension (JCE) Unlimited Strength Jurisdiction Policy Files from Oracle or IBM.

    Be sure to download the correct policy file updates for your version of Java:

    Java 7 or 8: http://www.oracle.com/technetwork/java/javase/downloads/index.html

    IBM: https://www14.software.ibm.com/webapp/iwm/web/preLogin.do?source=jcesdk

  2. Uncompress and extract the downloaded file. The download includes a Readme.txt and two .jar files with the same names as the existing policy files.

  3. Locate the two existing policy files:

    local_policy.jar

    US_export_policy.jar

    On UNIX, look in <java-home>/lib/security

    On Windows, look in C:\Program Files\Java/jre<version>\lib\security

  4. Replace the existing policy files with the unlimited strength policy files you extracted.