UIM 8.4: Admin console not opened after JRE upgrade

Document ID : KB000005760
Last Modified Date : 14/02/2018
Show Technical Document Details
Issue:

The java_jre v1.73 is expected to address a vulnerability.  But we are unable to connect to Admin Console after deploying java_jre v1.73 if we enable SSL in service_host. 

Environment:
UIM 8.4
Cause:

In jre_7u85, which is the jre that is packaged in java_jre 1.73, there is a check that DH key for SSL is exactly 1024. Tomcat 7 automatically attempts to use a DH(Diffie–Hellman) key size of 2048. 

Resolution:

The settings are configurable. If the attached scripts (.bat for windows, .sh for *nix) are added to the "$Service_host_home/apache-tomcat-x.x.x/bin" directory, then on start-up of service_host tomcat should use the 1024 bit key size.

 

Please note that the file attached is named as setenv.bat1 as .bat file could not be uploaded due to some restrictions. Please rename it to setenv.bat before using. 

File Attachments:
TEC1217115.zip