Weblogic protocol handler has a known issue in 8.1 SP5 to handle the encryption using SunJCE provider in SSL communication. It gives unsupported key length issue when used. Suggested solution is to download the unlimited strength encryption jar files from sun site and keep it in classpath.
Sometimes, this solution is not acceptable in production environment unless and otherwise the upgrade to next version happens from product vender.
The service provider can be commented in java.security file:
security.provider.1=sun.security.provider.Sun
security.provider.2=com.sun.net.ssl.internal.ssl.Provider
security.provider.3=com.sun.rsajca.Provider
#security.provider.4=com.sun.crypto.provider.SunJCE
security.provider.4=sun.security.jgss.SunProvider
I am still in confusion with the behavior of weblogic's protocol handler. Eventhough the priority for SunJCE is 4, Still it is picking up SunJCE.
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment