Details
-
Bug
-
Resolution: Duplicate
-
P3
-
prod07
-
x86
-
windows_vista
Description
Hallo,
This is an RFI (Request for Information / solicitation for an official statement) from SAP AG regarding JDK 6 Update 3. The message is as follows:
------------------------------
We observe following problem when running JRE 1.6.0_03 on Vista:
If in Java control panel under Advanced -> Security the option "use certificates and keys in browser keystore" is selected we expect (and this is how it wors under XP) that certificates from browser's keystore can be used for SSL with client authentication.
Unfortunately this doesn't work under Vista. The popup for client certificate selection doesn't contain any certificate although they are correctly installed in IE.
Could you help us to find out whether this is a known limitation and whether this can be changed in the near future. ------------------------------------------------------------
This problem is caused by UAC in window Vista system, Java plugin are running inside browser process, all the browser process are only has low integrity level, therefore it can't access browser keystore.
We have implemented a new Java plugin which will running outside of browser process, the new Java plugin will be availabe in JRE 6u10 release, you can download beta and test it out:
http://java.sun.com/javase/downloads/ea/6u10/6u10beta.jsp
I dont quite understand the difference between the other CRs that were compared against the one that I reported. The scenario is as follows. The certificates were imported into the Internet Explorer browser keystore and were accessed through the Java Control Panel. The certificates were not found. Is this feature being revamped at the moment? What are the workarounds available at the moment that the ISV could benefit from, temporarily. The Internet Explorer does not crash as is described in the other CRs, but the access to the Internet Explorer browser keystore from the Java Control Panel in Windows Vista fails. I'd like to know if this is a known behavior and if so, what measures are taken to retain the compatibility between earlier versions of Java and Windows. This could be quite a serious issue considering comatibility, as a lot of software vendors are mograting to newer versions of JDK and Windows, while they still continue to support the existing infrastructure.
This is an RFI (Request for Information / solicitation for an official statement) from SAP AG regarding JDK 6 Update 3. The message is as follows:
------------------------------
We observe following problem when running JRE 1.6.0_03 on Vista:
If in Java control panel under Advanced -> Security the option "use certificates and keys in browser keystore" is selected we expect (and this is how it wors under XP) that certificates from browser's keystore can be used for SSL with client authentication.
Unfortunately this doesn't work under Vista. The popup for client certificate selection doesn't contain any certificate although they are correctly installed in IE.
Could you help us to find out whether this is a known limitation and whether this can be changed in the near future. ------------------------------------------------------------
This problem is caused by UAC in window Vista system, Java plugin are running inside browser process, all the browser process are only has low integrity level, therefore it can't access browser keystore.
We have implemented a new Java plugin which will running outside of browser process, the new Java plugin will be availabe in JRE 6u10 release, you can download beta and test it out:
http://java.sun.com/javase/downloads/ea/6u10/6u10beta.jsp
I dont quite understand the difference between the other CRs that were compared against the one that I reported. The scenario is as follows. The certificates were imported into the Internet Explorer browser keystore and were accessed through the Java Control Panel. The certificates were not found. Is this feature being revamped at the moment? What are the workarounds available at the moment that the ISV could benefit from, temporarily. The Internet Explorer does not crash as is described in the other CRs, but the access to the Internet Explorer browser keystore from the Java Control Panel in Windows Vista fails. I'd like to know if this is a known behavior and if so, what measures are taken to retain the compatibility between earlier versions of Java and Windows. This could be quite a serious issue considering comatibility, as a lot of software vendors are mograting to newer versions of JDK and Windows, while they still continue to support the existing infrastructure.