The JRE which is embedded with Data Protection should not be shared with other applications and it should not be upgraded. CA will only support the specific major-minor version of the JRE (1.8). Upgrading the JRE may cause the application to stop working correctly or stop working entirely.
If there are any vulnerabilities which require patching which requires an update to the minor version for example patching from 1.8_51 to 1.8_151 this should be done with extreme caution. CA Does not test every patch release and only provides specific guidance when a vulnerability has been identified as impacting Data protection.
CA Data Protection packages the Java Run-time (JRE) and is deployed during installation. This JRE is packaged from the Java Development Kit (JDK) installation.
The path to this JRE can be found in registry at
In case of native 64-bit CMS, registry is
To use a patched JRE.
1. Install the JRE which gets installed/shipped with JDK.
2. Stop "CA Data Protection" services.
3. Point the registry mentioned above to the install location of the JRE.
If JDK is installed at C:\Program Files (x86)\Java\jdk1.8.0_151, then JREPath will generally be C:\Program Files (x86)\Java\jdk1.8.0_151\jre
4. Start "CA Data Protection" services.
Each server has its own JRE and having different versions will not cause problems.
Installers tend to reconfigure JREPath to the default value during repair or installation of patches . Please make sure, to reset the path to the required destination JRE folder.