Thursday, July 21, 2005

Urgent - Java (JCE) will expire on July 28

Novell has identified two products which will be affected by this certificate expiration and recommend that you follow the instructions in the TID's below to avoid interruptions to your business.

DirXML 1.x: (Only Java drivers using SSL and running in a Remote Loader configuration will be affected) - See TID 10098323

ZEN for Servers: (Only encrypted distributions running on any version of ZenWorks Server Management are affected) TID 10098334

Java base driver running within remote loader will not start when configured to use SSL.

On July 28th, 2005, the JCE 1.2.1 will no longer work with the DirXML 1.1a framework. Specifically when running a Java-based driver within the remote loader and have SSL enabled. The solution provided by Sun is to upgrade the 1.2.1 JCE to 1.2.2. To reiterate, this is only a problem with Java base driver shims run within remote loader using SSL to the engine. All other shim are unaffected (including the eDirectory driver).

This is a quote from the SUN Website .

"The Java Cryptography Extension (JCE) 1.2.1 is an optional package for J2SE 1.2.x and 1.3.x that provides a framework and implementations for encryption, key generation, key agreement, and Message Authentication Code (MAC) algorithms."

In ZENworks Server Management we employ the JCE to encrypt Distributions. Expiration will render these types of distributions unusable on July 27, 2005. For more information from Sun see Sunalert

- Bucky

No comments: