Installing the Unrestricted Java Cryptography Extension
The Java Cryptography Extension (JCE) is a Java framework that is required to decrypt advanced cryptography algorithms for AES 192-bit or AES 256-bit SNMPv3 traps.
Each managed host that receives SNMPv3 high-level traps requires the unrestricted JCE. If you require advanced cryptography algorithms for SNMP communication, you must update the existing cryptography extension on your managed host with an unrestricted JCE.
- Using SSH, log in to your JSA Console.
- To verify the version of Java on the Console, type the
The JCE file must match the version of the Java installed on the Console.
- Download the latest version of the Java Cryptography Extension from the Juniper website.
- Secure copy (SCP) the
US_export_policy.jarfile to the following directory of the Console:
- Optional. Distributed deployments require administrators
to copy the
US_export_policy.jarfiles from the Console appliance to the managed host.
You are now ready to create a scan schedule. See Scheduling a Vulnerability Scan.