Webstart client may fail to connect Management server using 256-bit encryption
- Article Number: 000010136
- Products: NGFW Security Management Center
- Version: 6.3, 6.2, 6.1, 6.0, 5.9, 5.8, 5.7, 5.5, 5.10
- Last Published Date: Wed Dec 06 18:40:04 GMT 2017
The Webstart client fails to connect to the Management server using 256-bit encryption when the Java JCE Unlimited Strength Jurisdiction Policy Files extension is not available.
Note Starting with v5.9.2, SMC will display the reason for the login failure.
Starting with v6.2.2 the displayed message is:
"Your local Java installation does not have the Java Cryptography Extension (JCE) Unlimited Strength Jurisdiction Policy Files extension enabled."
Starting from SMC 6.3.2 version the Java jurisdiction policy files that are required for Webstart Management Clients to connect to Management Servers that use 256-bit encryption are included. Java version 1.8.0_151 is required on the computer where you use the Webstart Management Client.
WorkaroundFor Microsoft Windows:
Use the operating system tools to install the Java cryptography extension. For example, for Ubuntu:
To download and extract the correct Java cryptography extension: