Kbase 22104: SonicMQ: Implementing IAIK SSL with Sun or IBM 1.3 JRE
| Autor |
Progress Software Corporation - Progress |
| Acesso |
Público |
| Publicação |
7/22/2002 |
|
SUMMARY:
In order to use the IAIK SSL provider with SonicMQ and the 1.3 JRE, these are the recommended changes. There are no changes necessary when using the default SSL provider, RSA.
IAIK with Sun 1.3:
1) Edit <Sun-jre-Installdir>\lib\security\java.security.
Change the Security provider list so that IAIK comes
before com.sun.rsajca.Provider
Example:
Original:
--------
#
# List of providers and their preference orders (see above):
#
security.provider.1=sun.security.provider.Sun
security.provider.2=com.sun.rsajca.Provider
Updated:
---------
#
# List of providers and their preference orders (see above):
#
security.provider.1=sun.security.provider.Sun
security.provider.2=iaik.security.provider.IAIK
security.provider.3=com.sun.rsajca.Provider
2) The IAIK jar files, iaik_jce.jar and iaik_ssl.jar must
be on the classpath of any SonicMQ component that uses IAIK.
IAIK with IBM 1.3:
1) Delete or move IBMJCEfw.jar from <SonicMQ-Installdir>\Java\lib\ext.
The file IBMJCEfw.jar is not used by SonicMQ nor RSA, so this will
not impact the operation of SonicMQ nor RSA if the RSA SSL
implementation is used.
2) No changes to java.security
3) The IAIK jar files, iaik_jce.jar and iaik_ssl.jar, must be on the
classpath of any SonicMQ component that uses IAIK.
NOTE: This is not intended to be complete information for configuring IAIK for SonicMQ. Consult the IAIK and SonicMQ documentation for additional information. IAIK is not supplied with SonicMQ and must be acquired independently.