Novell SENTINEL 6.1 SP2 - INSTALLATION GUIDE 02-2010 Installation Manual page 96

NOTE: It is highly recommended that you review the "Understanding the Export/Import
Issues" section of the Java
To configure AES 256-bit encryption:
1 Download Unlimited Encryption policies from
index_jdk5.jsp). In the Other Downloads section, download "Java Cryptography Extension
(JCE) Unlimited Strength Jurisdiction Policy Files 5.0".
2 Apply the above mentioned policy file to all the JRE's that run processes that connect directly
to Sonic (DAS, Correlation Engine, Communication Server, Collector Manager if used in
Direct to Sonic mode). To understand how to apply policy files, go through the
available in the policy you downloaded.
3 Use the keymgr utility to generate a 256-bit
Section 6.2, "Changing the Communication Encryption Key," on page
4 Copy this
%ESEC_HOME%\config directory.
NOTE: If you are using Advisor in Direct Download mode, you must update the Advisor password
stored in Advisor's configuration files. This password is encrypted using the information in
.keystore
updating a password, see "Certificate Management for DAS_Proxy" section in
Reference Guide.
96 Sentinel 6.1 Installation Guide
Readme.txt
file to all machines in step #2 and place in the $ESEC_HOME/config or
.keystore
and must be recreated using the new
file before enabling 256-bit encryption.
Sun (http://java.sun.com/javase/downloads/
AES .keystore
value. For more information on
.keystore
Readme.txt
file by follow the instructions in
94.
Sentinel 6.1