Install Java Cryptography Extension (JCE) unlimited strength jurisdiction policy

Introduction

How to over come "org.apache.xml.security.encryption.XMLEncryptionException: Illegal key size or default parameters" or "java.security.InvalidKeyException:illegal Key Size" error when invoking secured services

These "org.apache.xml.security.encryption.XMLEncryptionException: Illegal key size or default parameters" or "java.security.InvalidKeyException:illegal Key Size" error usually occurs when we try to invoke a web services in a secured manner and your JVM is not provisioned for Java unlimited security jurisdiction.


To provision for the Java unlimited security jurisdiction we have to install Java Cryptography Extension (JCE) unlimited strength jurisdiction policy files.


How to Install JCE

Windows -

  1. Go to the Oracle Java SE download page
  2. Scroll down ... Under "Additional Resources" section you will find "Java Cryptography Extension (JCE) Unlimited Strength Jurisdiction Policy File"
  3. Download the version that matches your installed JVM for example  UnlimitedJCEPolicyJDK7.zip
  4. Unzip the downloaded zip 
  5. Copy local_policy.jar and US_export_policy.jar to the $JAVA_HOME/jre/lib/security (Note: these jars will be already there so you have to overwrite them)
  6. Then restart your application to get rid of this exception.
Linux/Unix

  1. Go to the Oracle Java SE download page
  2. Scroll down ... Under "Additional Resources" section you will find "Java Cryptography Extension (JCE) Unlimited Strength Jurisdiction Policy File"
  3. Download the version that matches your installed JVM for example  UnlimitedJCEPolicyJDK7.zip
  4. Unzip the downloaded zip 
  5. Copy local_policy.jar and US_export_policy.jar to the $JAVA_HOME/jre/lib/security (Note: these jars will be already there so you have to overwrite them)

# cd /usr/lib/jvm/java-1.7.0-oracle-1.7.0.51.x86_64/jre/lib/security
# cp /tmp/UnlimitedJCEPolicyJDK7.zip .

# ls -lhart
drwxrwxr-x.  2 root root 4.0K May 31  2011 UnlimitedJCEPolicy
-rw-r--r--.  1 root root  18K Dec 19  2013 java.security
-rw-r--r--.  1 root root 2.6K Dec 19  2013 java.policy
-rw-r--r--.  1 root root  81K Dec 19  2013 cacerts
-rw-r--r--.  1 root root 2.8K Dec 19  2013 blacklist
lrwxrwxrwx.  1 root root   58 Jul 17 14:15 US_export_policy.jar -> /etc/alternatives/jce_1.7.0_oracle_us_export_policy.x86_64
lrwxrwxrwx.  1 root root   54 Jul 17 14:15 local_policy.jar -> /etc/alternatives/jce_1.7.0_oracle_local_policy.x86_64
drwxr-xr-x. 17 root root 4.0K Nov  5 03:07 ..
-rw-r--r--.  1 root root 7.3K Dec 30 13:27 UnlimitedJCEPolicyJDK7.zip
drwxr-xr-x.  3 root root 4.0K Dec 30 13:28 .

# rm local_policy.jar
# rm US_export_policy.jar

# unzip UnlimitedJCEPolicyJDK7.zip
# cp UnlimitedJCEPolicy/US_export_policy.jar .
# cp UnlimitedJCEPolicy/local_policy.jar .



In Mule if you are unable to connect from Mule Management Console to the the on-Prem Mule Runtime or API Gateway servers then you have to install the Java Cryptography Extension (JCE) unlimited strength jurisdiction policy files.

Comments

  1. Unknown3 March 2018 at 03:29

    Hi Sanjeet,
    Thank you for update from now onward I start to use MuleSoft in my training practice. Thank you for explaining each step-in screen shots. I use blogs for my easy reference which were quite useful to get started with.
    I am an Oracle SOA developer, I am new to MuleSoft, can you please advise me how to learn and any documentation.
    Can you please explain diffidence between MuleSoft with oracle fusion middleware?
    According to MuleSoft Tutorials . I am working on file adapter; my use case is read file from one location and write into another location can you please explain how can I approach this use case in MuleSoft?
    I recommend Videos Courses from MuleSoft Training on Mac and Windows.
    I want to learn MuleSoft ESB, I am not a java resource, weather I am eligible to learn lot required to learn Java also.
    Please guide me and how the future market of the Mule looks like?
    Anyways great write up, your efforts are much appreciated.
    Muchas Gracias,
    Kishore

    ReplyDelete
  2. Unknown31 December 2018 at 02:17

    Great article ...Thanks for your great information, the contents are quiet interesting.
    MuleSoft Online Training
    MuleSoft Training in Hyderabad

    ReplyDelete
  3. Priya9 December 2019 at 02:58

    Thank you for useful information.The post is good
    Mulesoft Online Training
    Mulesoft Training in Hyderabad

    ReplyDelete
  4. Julia Loi1 March 2020 at 03:36

    I think this is an informative post and it is very useful and knowledgeable. therefore, I would like to thank you for the efforts you have made in writing this article.mobile phone repair in Novi
    iphone repair in Novi
    cell phone repair in Novi
    phone repair in Novi
    tablet repair in Novi
    ipad repair in Novi
    mobile phone repair Novi
    iphone repair Novi
    cell phone repair Novi
    phone repair Novi

    ReplyDelete
  5. Admin14 October 2020 at 22:31

    Here is the site(bcomexamresult.in) where you get all Bcom Exam Results. This site helps to clear your all query.
    HPU BCOM 3rd Year Result 2020
    BA 3rd year Result 2019-20
    Sdsuv University B.COM 3rd/HONOURS Sem Exam Result 2018-2021

    ReplyDelete

Post a Comment

Popular posts from this blog

Features of Mule SAP Connector

Features of Mule SAP Connector from Sanjeet Pandey Features of Mule SAP Connector  1. Overview - As one of the most widely used enterprise resource planning solutions on the market, SAP plays a central role in the most critical business processes for many companies. In order to fully automate and optimize these business processes, companies need to integrate SAP with other applications within their organization. This article discusses SAP integration with other applications like Salesforce, e-POS, e-Commerce SharePoint etc. including uses and benefits, challenges, and new approaches. - An alternative approach to point-to-point quick fixes and expensive SOA stacks is integrate SAP using an (Enterprise Service Bus). - Mule’s SAP Enterprise Connector provides bidirectional communication and works with existing SAP technologies such as: • Intermediate Documents (IDocs) • Business Application Programming Interfaces (BAPIs) • SAP Java Connector (JCo) 2. Mule ESB SAP Connect...
Read more

Integration with Sercice-Now using Mule ESB

Integration with Sercice-Now using Mule ESB from Sanjeet Pandey Integration with Sercice-Now using Mule ESB 1. Overview - MuleSoft provides the most widely used integration platform to connect any application, data service or API, across the cloud and on-premise continuum. - It is always great to have the applications send alerts and create incidents or tickets when something goes wrong. MuleSoft provides ‘ServiceNow’ connector to establish connection between MuleSoft Applications and ServiceNow Database which seamlessly creates incidents, requests, assign requests to groups or people.  2. Prerequisites • Service Now Account • Service Now User Name and Password  3. Microsoft Azure Shared Access Name and Key Click Connection Information. In the Access connection information dialog, find the connection string that contains the SAS key and key name. Make a note of these values, as you will use this information later to perform operations with the namespace. ...
Read more