Discussion:
IBM SDI install "unlimited strength file"
(too old to reply)
g***@gmail.com
2018-12-13 16:43:20 UTC
Permalink
some one knows if is posible to install unlimited strength file on IBM SDI(
https://stackoverflow.com/questions/6481627/java-security-illegal-key-size-or-default-parameters/6481658#6481658)? i try and the SDI server never starts and got this error:


2018-12-13 11:42:49,342 INFO [server] - CTGDIS232I Server is running in standard mode.
2018-12-13 11:42:49,499 ERROR [com.ibm.di.loader.ServerLauncher] - CTGDKG023E Error while starting main class.
java.lang.reflect.InvocationTargetException
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:60)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:37)
at java.lang.reflect.Method.invoke(Method.java:611)
at com.ibm.di.loader.ServerLauncher.startServer(ServerLauncher.java:172)
at com.ibm.di.loader.ServerLauncher.main(ServerLauncher.java:79)
Caused by: java.lang.ExceptionInInitializerError
at java.lang.J9VMInternals.initialize(J9VMInternals.java:222)
at javax.crypto.Cipher.getInstance(Unknown Source)
at com.ibm.di.security.CryptoFactory.createCipher(CryptoFactory.java:369)
at com.ibm.di.security.SecurityCrypto.<init>(SecurityCrypto.java:94)
at com.ibm.di.security.SecurityCrypto.<init>(SecurityCrypto.java:55)
at com.ibm.di.server.StashFile.readPasswordsFromFile(StashFile.java:181)
at com.ibm.di.server.StashFile.readPasswords(StashFile.java:146)
at com.ibm.di.server.StashFile.readPasswords(StashFile.java:129)
at com.ibm.di.server.RS.initializeSecurity(RS.java:2197)
at com.ibm.di.server.RS.runMaster(RS.java:2354)
at com.ibm.di.server.RS.run(RS.java:2150)
at com.ibm.di.server.RS.main(RS.java:593)
... 6 more
Caused by: java.lang.SecurityException: Cannot set up certs for trusted CAs
at javax.crypto.b.<clinit>(Unknown Source)
at java.lang.J9VMInternals.initializeImpl(Native Method)
at java.lang.J9VMInternals.initialize(J9VMInternals.java:200)
... 17 more
Caused by: java.lang.SecurityException: Jurisdiction policy files are not signed by trusted signers!
at javax.crypto.b.a(Unknown Source)
at javax.crypto.b.a(Unknown Source)
at javax.crypto.b.access$600(Unknown Source)
at javax.crypto.b$0.run(Unknown Source)
at java.security.AccessController.doPrivileged(AccessController.java:251)
... 20 more
Jason Williams
2018-12-13 17:45:27 UTC
Permalink
Post by g***@gmail.com
some one knows if is posible to install unlimited strength file on IBM SDI(
2018-12-13 11:42:49,342 INFO [server] - CTGDIS232I Server is running in standard mode.
2018-12-13 11:42:49,499 ERROR [com.ibm.di.loader.ServerLauncher] - CTGDKG023E Error while starting main class.
java.lang.reflect.InvocationTargetException
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:60)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:37)
at java.lang.reflect.Method.invoke(Method.java:611)
at com.ibm.di.loader.ServerLauncher.startServer(ServerLauncher.java:172)
at com.ibm.di.loader.ServerLauncher.main(ServerLauncher.java:79)
Caused by: java.lang.ExceptionInInitializerError
at java.lang.J9VMInternals.initialize(J9VMInternals.java:222)
at javax.crypto.Cipher.getInstance(Unknown Source)
at com.ibm.di.security.CryptoFactory.createCipher(CryptoFactory.java:369)
at com.ibm.di.security.SecurityCrypto.<init>(SecurityCrypto.java:94)
at com.ibm.di.security.SecurityCrypto.<init>(SecurityCrypto.java:55)
at com.ibm.di.server.StashFile.readPasswordsFromFile(StashFile.java:181)
at com.ibm.di.server.StashFile.readPasswords(StashFile.java:146)
at com.ibm.di.server.StashFile.readPasswords(StashFile.java:129)
at com.ibm.di.server.RS.initializeSecurity(RS.java:2197)
at com.ibm.di.server.RS.runMaster(RS.java:2354)
at com.ibm.di.server.RS.run(RS.java:2150)
at com.ibm.di.server.RS.main(RS.java:593)
... 6 more
Caused by: java.lang.SecurityException: Cannot set up certs for trusted CAs
at javax.crypto.b.<clinit>(Unknown Source)
at java.lang.J9VMInternals.initializeImpl(Native Method)
at java.lang.J9VMInternals.initialize(J9VMInternals.java:200)
... 17 more
Caused by: java.lang.SecurityException: Jurisdiction policy files are not signed by trusted signers!
at javax.crypto.b.a(Unknown Source)
at javax.crypto.b.a(Unknown Source)
at javax.crypto.b.access$600(Unknown Source)
at javax.crypto.b$0.run(Unknown Source)
at java.security.AccessController.doPrivileged(AccessController.java:251)
... 20 more
Gabriel,
I believe the error given shows the wrong policy files were downloaded and applied.
The error 'Caused by:
java.lang.SecurityException: Jurisdiction policy files are not signed by trusted signers!' happens when the Java version does not match with the version of policy files.

Please do the following for me.
1. Check the JRE Version & SR level of the TDI JVM by running this command (\jvm\jre\bin\java -fullversion)
2. Based on the JRE Version & SR installed, please download the appropriate JCE Policy package from
https://www14.software.ibm.com/webapp/iwm/web/preLogin.do?source=jcesdk
3. Replace the local_policy.jar & US_export_policy.jar found in
\jvm\jre\lib\security, with the files download from Step2.
4. Restart all TDI Java process, and then test your connectivity
g***@gmail.com
2018-12-13 18:04:08 UTC
Permalink
Post by Jason Williams
Post by g***@gmail.com
some one knows if is posible to install unlimited strength file on IBM SDI(
2018-12-13 11:42:49,342 INFO [server] - CTGDIS232I Server is running in standard mode.
2018-12-13 11:42:49,499 ERROR [com.ibm.di.loader.ServerLauncher] - CTGDKG023E Error while starting main class.
java.lang.reflect.InvocationTargetException
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:60)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:37)
at java.lang.reflect.Method.invoke(Method.java:611)
at com.ibm.di.loader.ServerLauncher.startServer(ServerLauncher.java:172)
at com.ibm.di.loader.ServerLauncher.main(ServerLauncher.java:79)
Caused by: java.lang.ExceptionInInitializerError
at java.lang.J9VMInternals.initialize(J9VMInternals.java:222)
at javax.crypto.Cipher.getInstance(Unknown Source)
at com.ibm.di.security.CryptoFactory.createCipher(CryptoFactory.java:369)
at com.ibm.di.security.SecurityCrypto.<init>(SecurityCrypto.java:94)
at com.ibm.di.security.SecurityCrypto.<init>(SecurityCrypto.java:55)
at com.ibm.di.server.StashFile.readPasswordsFromFile(StashFile.java:181)
at com.ibm.di.server.StashFile.readPasswords(StashFile.java:146)
at com.ibm.di.server.StashFile.readPasswords(StashFile.java:129)
at com.ibm.di.server.RS.initializeSecurity(RS.java:2197)
at com.ibm.di.server.RS.runMaster(RS.java:2354)
at com.ibm.di.server.RS.run(RS.java:2150)
at com.ibm.di.server.RS.main(RS.java:593)
... 6 more
Caused by: java.lang.SecurityException: Cannot set up certs for trusted CAs
at javax.crypto.b.<clinit>(Unknown Source)
at java.lang.J9VMInternals.initializeImpl(Native Method)
at java.lang.J9VMInternals.initialize(J9VMInternals.java:200)
... 17 more
Caused by: java.lang.SecurityException: Jurisdiction policy files are not signed by trusted signers!
at javax.crypto.b.a(Unknown Source)
at javax.crypto.b.a(Unknown Source)
at javax.crypto.b.access$600(Unknown Source)
at javax.crypto.b$0.run(Unknown Source)
at java.security.AccessController.doPrivileged(AccessController.java:251)
... 20 more
Gabriel,
I believe the error given shows the wrong policy files were downloaded and applied.
java.lang.SecurityException: Jurisdiction policy files are not signed by trusted signers!' happens when the Java version does not match with the version of policy files.
Please do the following for me.
1. Check the JRE Version & SR level of the TDI JVM by running this command (\jvm\jre\bin\java -fullversion)
2. Based on the JRE Version & SR installed, please download the appropriate JCE Policy package from
https://www14.software.ibm.com/webapp/iwm/web/preLogin.do?source=jcesdk
3. Replace the local_policy.jar & US_export_policy.jar found in
\jvm\jre\lib\security, with the files download from Step2.
4. Restart all TDI Java process, and then test your connectivity
Hi Jason,

Well, this is the java version:

D:\Programs\IBM\TDI\V7.1.1\jvm\jre\bin>java -fullversion
java full version "JRE 1.6.0 IBM Windows 32 build pwi3260sr10-20111208_01 (SR10)"

When was looking for the correct jar i found this:


*Java 5.0 SR16, Java 6 SR13, Java 6 SR5 (J9 VM2.6), Java 7 SR4, Java 8 GA, and all later releases
Versión Multiple


*Files for older versions of the SDK
Versión Multiple

Just Download the JAVA 8 GA version But the same error occurs on the SDI server.



2018-12-13 12:58:30,117 INFO [server] - CTGDIS232I Server is running in standard mode.
2018-12-13 12:58:30,272 ERROR [com.ibm.di.loader.ServerLauncher] - CTGDKG023E Error while starting main class.
java.lang.reflect.InvocationTargetException
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:60)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:37)
at java.lang.reflect.Method.invoke(Method.java:611)
at com.ibm.di.loader.ServerLauncher.startServer(ServerLauncher.java:172)
at com.ibm.di.loader.ServerLauncher.main(ServerLauncher.java:79)
Caused by: java.lang.ExceptionInInitializerError
at java.lang.J9VMInternals.initialize(J9VMInternals.java:222)
at javax.crypto.Cipher.getInstance(Unknown Source)
at com.ibm.di.security.CryptoFactory.createCipher(CryptoFactory.java:369)
at com.ibm.di.security.SecurityCrypto.<init>(SecurityCrypto.java:94)
at com.ibm.di.security.SecurityCrypto.<init>(SecurityCrypto.java:55)
at com.ibm.di.server.StashFile.readPasswordsFromFile(StashFile.java:181)
at com.ibm.di.server.StashFile.readPasswords(StashFile.java:146)
at com.ibm.di.server.StashFile.readPasswords(StashFile.java:129)
at com.ibm.di.server.RS.initializeSecurity(RS.java:2197)
at com.ibm.di.server.RS.runMaster(RS.java:2354)
at com.ibm.di.server.RS.run(RS.java:2150)
at com.ibm.di.server.RS.main(RS.java:593)
... 6 more
Caused by: java.lang.SecurityException: Cannot set up certs for trusted CAs
at javax.crypto.b.<clinit>(Unknown Source)
at java.lang.J9VMInternals.initializeImpl(Native Method)
at java.lang.J9VMInternals.initialize(J9VMInternals.java:200)
... 17 more
Caused by: java.lang.SecurityException: Jurisdiction policy files are not signed by trusted signers!
at javax.crypto.b.a(Unknown Source)
at javax.crypto.b.a(Unknown Source)
at javax.crypto.b.access$600(Unknown Source)
at javax.crypto.b$0.run(Unknown Source)
at java.security.AccessController.doPrivileged(AccessController.java:251)
... 20 more
Jason Williams
2018-12-14 17:25:47 UTC
Permalink
Post by g***@gmail.com
Post by Jason Williams
Post by g***@gmail.com
some one knows if is posible to install unlimited strength file on IBM SDI(
2018-12-13 11:42:49,342 INFO [server] - CTGDIS232I Server is running in standard mode.
2018-12-13 11:42:49,499 ERROR [com.ibm.di.loader.ServerLauncher] - CTGDKG023E Error while starting main class.
java.lang.reflect.InvocationTargetException
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:60)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:37)
at java.lang.reflect.Method.invoke(Method.java:611)
at com.ibm.di.loader.ServerLauncher.startServer(ServerLauncher.java:172)
at com.ibm.di.loader.ServerLauncher.main(ServerLauncher.java:79)
Caused by: java.lang.ExceptionInInitializerError
at java.lang.J9VMInternals.initialize(J9VMInternals.java:222)
at javax.crypto.Cipher.getInstance(Unknown Source)
at com.ibm.di.security.CryptoFactory.createCipher(CryptoFactory.java:369)
at com.ibm.di.security.SecurityCrypto.<init>(SecurityCrypto.java:94)
at com.ibm.di.security.SecurityCrypto.<init>(SecurityCrypto.java:55)
at com.ibm.di.server.StashFile.readPasswordsFromFile(StashFile.java:181)
at com.ibm.di.server.StashFile.readPasswords(StashFile.java:146)
at com.ibm.di.server.StashFile.readPasswords(StashFile.java:129)
at com.ibm.di.server.RS.initializeSecurity(RS.java:2197)
at com.ibm.di.server.RS.runMaster(RS.java:2354)
at com.ibm.di.server.RS.run(RS.java:2150)
at com.ibm.di.server.RS.main(RS.java:593)
... 6 more
Caused by: java.lang.SecurityException: Cannot set up certs for trusted CAs
at javax.crypto.b.<clinit>(Unknown Source)
at java.lang.J9VMInternals.initializeImpl(Native Method)
at java.lang.J9VMInternals.initialize(J9VMInternals.java:200)
... 17 more
Caused by: java.lang.SecurityException: Jurisdiction policy files are not signed by trusted signers!
at javax.crypto.b.a(Unknown Source)
at javax.crypto.b.a(Unknown Source)
at javax.crypto.b.access$600(Unknown Source)
at javax.crypto.b$0.run(Unknown Source)
at java.security.AccessController.doPrivileged(AccessController.java:251)
... 20 more
Gabriel,
I believe the error given shows the wrong policy files were downloaded and applied.
java.lang.SecurityException: Jurisdiction policy files are not signed by trusted signers!' happens when the Java version does not match with the version of policy files.
Please do the following for me.
1. Check the JRE Version & SR level of the TDI JVM by running this command (\jvm\jre\bin\java -fullversion)
2. Based on the JRE Version & SR installed, please download the appropriate JCE Policy package from
https://www14.software.ibm.com/webapp/iwm/web/preLogin.do?source=jcesdk
3. Replace the local_policy.jar & US_export_policy.jar found in
\jvm\jre\lib\security, with the files download from Step2.
4. Restart all TDI Java process, and then test your connectivity
Hi Jason,
D:\Programs\IBM\TDI\V7.1.1\jvm\jre\bin>java -fullversion
java full version "JRE 1.6.0 IBM Windows 32 build pwi3260sr10-20111208_01 (SR10)"
*Java 5.0 SR16, Java 6 SR13, Java 6 SR5 (J9 VM2.6), Java 7 SR4, Java 8 GA, and all later releases
Versión Multiple
*Files for older versions of the SDK
Versión Multiple
Just Download the JAVA 8 GA version But the same error occurs on the SDI server.
2018-12-13 12:58:30,117 INFO [server] - CTGDIS232I Server is running in standard mode.
2018-12-13 12:58:30,272 ERROR [com.ibm.di.loader.ServerLauncher] - CTGDKG023E Error while starting main class.
java.lang.reflect.InvocationTargetException
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:60)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:37)
at java.lang.reflect.Method.invoke(Method.java:611)
at com.ibm.di.loader.ServerLauncher.startServer(ServerLauncher.java:172)
at com.ibm.di.loader.ServerLauncher.main(ServerLauncher.java:79)
Caused by: java.lang.ExceptionInInitializerError
at java.lang.J9VMInternals.initialize(J9VMInternals.java:222)
at javax.crypto.Cipher.getInstance(Unknown Source)
at com.ibm.di.security.CryptoFactory.createCipher(CryptoFactory.java:369)
at com.ibm.di.security.SecurityCrypto.<init>(SecurityCrypto.java:94)
at com.ibm.di.security.SecurityCrypto.<init>(SecurityCrypto.java:55)
at com.ibm.di.server.StashFile.readPasswordsFromFile(StashFile.java:181)
at com.ibm.di.server.StashFile.readPasswords(StashFile.java:146)
at com.ibm.di.server.StashFile.readPasswords(StashFile.java:129)
at com.ibm.di.server.RS.initializeSecurity(RS.java:2197)
at com.ibm.di.server.RS.runMaster(RS.java:2354)
at com.ibm.di.server.RS.run(RS.java:2150)
at com.ibm.di.server.RS.main(RS.java:593)
... 6 more
Caused by: java.lang.SecurityException: Cannot set up certs for trusted CAs
at javax.crypto.b.<clinit>(Unknown Source)
at java.lang.J9VMInternals.initializeImpl(Native Method)
at java.lang.J9VMInternals.initialize(J9VMInternals.java:200)
... 17 more
Caused by: java.lang.SecurityException: Jurisdiction policy files are not signed by trusted signers!
at javax.crypto.b.a(Unknown Source)
at javax.crypto.b.a(Unknown Source)
at javax.crypto.b.access$600(Unknown Source)
at javax.crypto.b$0.run(Unknown Source)
at java.security.AccessController.doPrivileged(AccessController.java:251)
... 20 more
Your 'IBM 6 SR10' falls into the 'older versions of the SDK' category. Have you considered updating the IBM JVM to the latest support JVM for TDI? After the update, you'll then be able to use the policy files found in the 'Java 5.0 SR16, Java 6 SR13, Java 6 SR5 (J9 VM2.6), Java 7 SR4, Java 8 GA, and all later releases
Versión Multiple' download link.

Here's the link for 'Recommended fixes for IBM Tivoli Directory Integrator (TDI) & IBM Security Directory Integrator (SDI)'
https://www-01.ibm.com/support/docview.wss?uid=swg27010509
g***@gmail.com
2018-12-27 23:29:27 UTC
Permalink
Post by Jason Williams
Post by g***@gmail.com
Post by Jason Williams
Post by g***@gmail.com
some one knows if is posible to install unlimited strength file on IBM SDI(
2018-12-13 11:42:49,342 INFO [server] - CTGDIS232I Server is running in standard mode.
2018-12-13 11:42:49,499 ERROR [com.ibm.di.loader.ServerLauncher] - CTGDKG023E Error while starting main class.
java.lang.reflect.InvocationTargetException
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:60)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:37)
at java.lang.reflect.Method.invoke(Method.java:611)
at com.ibm.di.loader.ServerLauncher.startServer(ServerLauncher.java:172)
at com.ibm.di.loader.ServerLauncher.main(ServerLauncher.java:79)
Caused by: java.lang.ExceptionInInitializerError
at java.lang.J9VMInternals.initialize(J9VMInternals.java:222)
at javax.crypto.Cipher.getInstance(Unknown Source)
at com.ibm.di.security.CryptoFactory.createCipher(CryptoFactory.java:369)
at com.ibm.di.security.SecurityCrypto.<init>(SecurityCrypto.java:94)
at com.ibm.di.security.SecurityCrypto.<init>(SecurityCrypto.java:55)
at com.ibm.di.server.StashFile.readPasswordsFromFile(StashFile.java:181)
at com.ibm.di.server.StashFile.readPasswords(StashFile.java:146)
at com.ibm.di.server.StashFile.readPasswords(StashFile.java:129)
at com.ibm.di.server.RS.initializeSecurity(RS.java:2197)
at com.ibm.di.server.RS.runMaster(RS.java:2354)
at com.ibm.di.server.RS.run(RS.java:2150)
at com.ibm.di.server.RS.main(RS.java:593)
... 6 more
Caused by: java.lang.SecurityException: Cannot set up certs for trusted CAs
at javax.crypto.b.<clinit>(Unknown Source)
at java.lang.J9VMInternals.initializeImpl(Native Method)
at java.lang.J9VMInternals.initialize(J9VMInternals.java:200)
... 17 more
Caused by: java.lang.SecurityException: Jurisdiction policy files are not signed by trusted signers!
at javax.crypto.b.a(Unknown Source)
at javax.crypto.b.a(Unknown Source)
at javax.crypto.b.access$600(Unknown Source)
at javax.crypto.b$0.run(Unknown Source)
at java.security.AccessController.doPrivileged(AccessController.java:251)
... 20 more
Gabriel,
I believe the error given shows the wrong policy files were downloaded and applied.
java.lang.SecurityException: Jurisdiction policy files are not signed by trusted signers!' happens when the Java version does not match with the version of policy files.
Please do the following for me.
1. Check the JRE Version & SR level of the TDI JVM by running this command (\jvm\jre\bin\java -fullversion)
2. Based on the JRE Version & SR installed, please download the appropriate JCE Policy package from
https://www14.software.ibm.com/webapp/iwm/web/preLogin.do?source=jcesdk
3. Replace the local_policy.jar & US_export_policy.jar found in
\jvm\jre\lib\security, with the files download from Step2.
4. Restart all TDI Java process, and then test your connectivity
Hi Jason,
D:\Programs\IBM\TDI\V7.1.1\jvm\jre\bin>java -fullversion
java full version "JRE 1.6.0 IBM Windows 32 build pwi3260sr10-20111208_01 (SR10)"
*Java 5.0 SR16, Java 6 SR13, Java 6 SR5 (J9 VM2.6), Java 7 SR4, Java 8 GA, and all later releases
Versión Multiple
*Files for older versions of the SDK
Versión Multiple
Just Download the JAVA 8 GA version But the same error occurs on the SDI server.
2018-12-13 12:58:30,117 INFO [server] - CTGDIS232I Server is running in standard mode.
2018-12-13 12:58:30,272 ERROR [com.ibm.di.loader.ServerLauncher] - CTGDKG023E Error while starting main class.
java.lang.reflect.InvocationTargetException
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:60)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:37)
at java.lang.reflect.Method.invoke(Method.java:611)
at com.ibm.di.loader.ServerLauncher.startServer(ServerLauncher.java:172)
at com.ibm.di.loader.ServerLauncher.main(ServerLauncher.java:79)
Caused by: java.lang.ExceptionInInitializerError
at java.lang.J9VMInternals.initialize(J9VMInternals.java:222)
at javax.crypto.Cipher.getInstance(Unknown Source)
at com.ibm.di.security.CryptoFactory.createCipher(CryptoFactory.java:369)
at com.ibm.di.security.SecurityCrypto.<init>(SecurityCrypto.java:94)
at com.ibm.di.security.SecurityCrypto.<init>(SecurityCrypto.java:55)
at com.ibm.di.server.StashFile.readPasswordsFromFile(StashFile.java:181)
at com.ibm.di.server.StashFile.readPasswords(StashFile.java:146)
at com.ibm.di.server.StashFile.readPasswords(StashFile.java:129)
at com.ibm.di.server.RS.initializeSecurity(RS.java:2197)
at com.ibm.di.server.RS.runMaster(RS.java:2354)
at com.ibm.di.server.RS.run(RS.java:2150)
at com.ibm.di.server.RS.main(RS.java:593)
... 6 more
Caused by: java.lang.SecurityException: Cannot set up certs for trusted CAs
at javax.crypto.b.<clinit>(Unknown Source)
at java.lang.J9VMInternals.initializeImpl(Native Method)
at java.lang.J9VMInternals.initialize(J9VMInternals.java:200)
... 17 more
Caused by: java.lang.SecurityException: Jurisdiction policy files are not signed by trusted signers!
at javax.crypto.b.a(Unknown Source)
at javax.crypto.b.a(Unknown Source)
at javax.crypto.b.access$600(Unknown Source)
at javax.crypto.b$0.run(Unknown Source)
at java.security.AccessController.doPrivileged(AccessController.java:251)
... 20 more
Your 'IBM 6 SR10' falls into the 'older versions of the SDK' category. Have you considered updating the IBM JVM to the latest support JVM for TDI? After the update, you'll then be able to use the policy files found in the 'Java 5.0 SR16, Java 6 SR13, Java 6 SR5 (J9 VM2.6), Java 7 SR4, Java 8 GA, and all later releases
Versión Multiple' download link.
Here's the link for 'Recommended fixes for IBM Tivoli Directory Integrator (TDI) & IBM Security Directory Integrator (SDI)'
https://www-01.ibm.com/support/docview.wss?uid=swg27010509
Hi Jason, thx fot the help, this works perfect

Loading...