<div>
i also noticed that there is past issue pertaining to SHA-256 algorithm is provided by IBMJCE provider in IBMJDK, which is not included in the temporary security providers list used during JAR verification. The defect is fixed in 6.0.0 SR12 and 6.0.1 SR4<br />
<br />
[IV25042] Error Message: Command &quot;jarsigner -verify &lt;JAR signed using SHA-256&gt;&quot; will give &quot;jar is unsigned&quot; message.
</div>


i also noticed that there is past issue pertaining to SHA-256 algorithm is provided by IBMJCE provider in IBMJDK, which is not included in the temporary security providers list used during JAR verification. The defect is fixed in 6.0.0 SR12 and 6.0.1 SR4

[IV25042] Error Message: Command "jarsigner -verify <JAR signed using SHA-256>" will give "jar is unsigned" message.

<div>
<div class="content wysiwyg-content">
Hello,<br />
<br />
I coud'nt make WAS 6.0 read my sha-2 certificate.<br />
WAS is configured with &quot;global security&quot; option, I import the certificate to the &quot;DummyTrustFile&quot; of cell and node using jdk1.5 keytool 'cause with native keytool it's not possible, the algorithm is not recognized. I also put the certificate on &quot;cacerts&quot; but no chance to have WAS recognized it.<br />
I've added &quot;gnu-crypto&quot; jars and make changes on java.security but no chance.<br />
I've tested on separate jdk1.4.08 and it works fine and quickly by importing the certificate using recent keytool and the program works.<br />
<br />
Any help please to configure this on WAS 6.0<br />
<br />
Rachid,
</div>
</div>


Hello,

I coud'nt make WAS 6.0 read my sha-2 certificate.
WAS is configured with "global security" option, I import the certificate to the "DummyTrustFile" of cell and node using jdk1.5 keytool 'cause with native keytool it's not possible, the algorithm is not recognized. I also put the certificate on "cacerts" but no chance to have WAS recognized it.
I've added "gnu-crypto" jars and make changes on java.security but no chance.
I've tested on separate jdk1.4.08 and it works fine and quickly by importing the certificate using recent keytool and the program works.

Any help please to configure this on WAS 6.0

Rachid,

Issues with SHA-2 certificate on Web sphere 6.0

Java Enterprise Edition (Java EE) is a specification defining a collection of Java-based server and client technologies and how they interoperate. Java EE specifies server and client architectures and uses profiles to define technology sets targeted at specific classes of applications. All Java EE profiles share a set of common features, such as naming and resource injection, packaging rules and security requirements.

Java EE

Java application servers that support the Java EE platform and features include JOnAS from Object Web, WildFly (formerly JBoss AS) from JBoss, Geronimo from Apache, TomEE from Apache, Resin Java Application Server from Caucho Technology, Blazix from Desiderata Software, Enhydra Server from Enhydra.org, and GlassFish from Oracle. Commercial Java app servers include WebLogic by Oracle, WebSphere from IBM and the open source JBoss Enterprise Application Platform (JBoss EAP) by Red Hat.

Java App Servers

Encryption is the process of encoding messages or information in such a way that only authorized parties can read it. In an encryption scheme, the intended communication information or message, referred to as plaintext, is encrypted using an encryption algorithm, generating ciphertext that can only be read if decrypted. For technical reasons, an encryption scheme usually uses a pseudo-random encryption key generated by an algorithm. An authorized recipient can easily decrypt the message with the key provided by the originator to recipients, but not to unauthorized interceptors.