Novell Home

My Favorites

Close

Please to see your favorites.

Virtual Office error and JVM YOU patch 10258

(Last modified: 30Jun2005)

This document (10098127) is provided subject to the disclaimer at the end of this document.

goal

Virtual Office error and JVM YOU patch 10258

fact

 Red Carpet rug patches

Open Enterprise Server

uupdate.novell.com/data

fix

The fix for this problem is:

If the JVM patch YOU 10258 or 9788 has not yet been applied, back up the file /usr/lib/SunJava2-1.4.2/jre/lib/security/cacerts, install the patch(es). and then restore the cacerts file from your back up. This will overwrite the updated certificates delivered by Sun in the JVM. This cacerts file allows Java services on the local server to create a secure connection to services like eDirectory on the local server.

If either patch 10258 or 9788 has already been installed, the cacerts file can be restored to its original state. The steps to take depend on the services configured on the OES system. The two services that may need to be restored are iManager and VirtualOffice.

All sytems:

  1. Open a terminal and su to root
  2. Make sure the cacerts file is assigned to the www group by entering chown .www /opt/novell/lib/java2/jre/lib/security/cacerts
  3. Make sure group www has read and write access to the cacerts file by entering chmod g+rw /opt/novell/lib/java2/jre/lib/security/cacerts

If iManager is configured on the system, do the following:

  1. Open a terminal and su to root
  2. Import the eDirectory root certificate into the keystore by entering (be sure to put the treename in the alias e.g. imanager_eg-tree-sscert) /opt/novell/lib/java2/jre/bin/keytool -keystore /opt/novell/lib/java2/jre/lib/security/cacerts -import -alias imanager_[replacewithtreename]_sscert -file /etc/opt/novell/SSCert.der -storepass changeit -noprompt
  3. Import the server certificate into the keystore by entering /opt/novell/lib/java2/jre/bin/keytool -keystore /opt/novell/lib/java2/jre/lib/security/cacerts -import -file /etc/ssl/servercerts/servercert.pem -alias `hostname` -storepass changeit -noprompt

If VirtualOffice is configured on the system, do the following:

  1. Open a terminal and su to root
  2. Import the eDirectory root certificate into the keystore by entering (be sure to put the treename in the alias e.g. vo_eg-tree-sscert) /opt/novell/lib/java2/jre/bin/keytool -keystore /opt/novell/lib/java2/jre/lib/security/cacerts -import -alias vo_[replacewithtreename]_sscert -file /etc/opt/novell/SSCert.der -storepass changeit -noprompt

Restart the server to have the changes take effect.

disclaimer

The Origin of this information may be internal or external to Novell. Novell makes all reasonable efforts to verify this information. However, the information provided in this document is for your information only. Novell makes no explicit or implied claims to the validity of this information.
Any trademarks referenced in this document are the property of their respective owners. Consult your product manuals for complete trademark information.

  • Document ID:
  • 10098127
  • Solution ID: NOVL102601
  • Creation Date: 27Jun2005
  • Modified Date: 30Jun2005
    • NovellLinux

Did this document solve your problem? Provide Feedback