Spectrum 9.4 OneClick requires JCE Unlimited Strength Jurisdiction Policy Files

Document ID : KB000017638
Last Modified Date : 14/02/2018
Show Technical Document Details


Spectrum was enhanced in release 9.4 to use stronger encryption methods such as AES256 and SHA256. When trying to launch the console after an upgrade an end user may receive a popup as follows:

Figure 1

In order to launch the console an end user is required to download the JCE Unlimited Strength Jurisdiction file and manually replace the current policy in their JRE directory. The reason this step is necessary is due to import control restrictions of various countries.

(Oracle Excerpt)

Figure 2

Since Spectrum 9.4 now uses AES256 and SHA256 the JCE Unlimited Strength files are required on both sides to launch the console. The Internal version of JRE used by OneClick and the SpectroSERVER already ship with this file in place so only the client machines running the Console are required to be updated.


In order to unlock JRE's ability to use higher encryption methods the JCE policy file can be downloaded from

  1. OneClick Web Page

    Figure 3

    Figure 4

  2. Download from Oracle

    The download from Oracle also contains a ReadMe.txt explaining more about this.
    Once down loaded rename the current local_policy.jar file and replace it with the downloaded JCE Unlimited Strength version.

    32 bit JRE
    C:\Program Files (X86)\Java\jre7\lib\security\local_policy.jar
    64 bit JRE
    C:\Program Files\Java\jre7\lib\security\local_policy.jar

    Rename the file local_policy.jar to local_policy.jar.orig, copy in the Unlimited Strength file, re-launch the OneClick console.

Additional Information in regards to encryption algorithms used by Spectrum can be found in the Security Policy Statement documentation included with Spectrum 9.4 https://support.ca.com/cadocs/1/m003642e.pdf

File Attachments: