Tried to login to one of my server that requires Java and immediately got this error:
Unsigned application requesting unrestricted access to system. The following resource is signed with a weak signature algorithm MD5withRSA and is treated as unsigned
After some research on Google I found that the root cause was JAR files signed with MD5 algorithms. Apparently Java/Oracle decided to play smart suddenly and now they are treating JAR files signed with keySize less than <1024 as unsigned JARs. Read more here.
Fixing Unsigned application requesting
You can fix this by simply commening out jdk.jar.disabledAlgorithms in the file of lib/security/java.security
- In my Windows it’s located at:
C:\Program Files (x86)\Java\jre7\lib\security\java.security - In MacOS it’s located at
/Library/Internet Plug-Ins/JavaAppletPlugin.plugin/Contents/Home/lib/security/java.security - In Linux? – readers please comment below
I simply edited the file and added a hash # in front of the line below, save and run the JNLP File again and it worked.
# jdk.jar.disabledAlgorithms=MD2, MD5, RSA keySize < 1024
In some cases you may need to clear browser cache and Java Temporary files. Browser cache is normal, just delete everything including history form the beginning of time, all cookies, downloaded applications etc. For Java Temporary files do it from Control Panel > Java >
Now you can argue if this is secured? Duh, no … but when you’re about to make a change and there’s no alternative, then this is a quick and dirty fix. An alternative might be changing it to <128 Keysize or something else instead of commenting it out. Use your judgement i.e.
jdk.jar.disabledAlgorithms=MD2, MD5, RSA keySize < 128
52 comments
awesome! Fixed my issue after adding the IPs to the exception list failed.
Thank you, thank you, thank you! Finally able to get into my Cisco ASA 5505 ASDM again!
I have the cisco 5510, using asdm 6.3.(1) and this fix worked thank you!
It did not work if I put “jdk.jar.disabledAlgorithms=MD2, MD5, RSA keySize < 128”, but it did work when I commented the whole line out.
That’s a new Java feature. I have a post where I experienced something similar: http://www.blackmoreops.com/2017/06/08/fix-java-error-unsigned-application-requesting-unrestricted-access-to-system/
simply delete below line from java.security
path : C:\Program Files\Java\jre1.8.0_361\lib\security – open this file on notepad and find below line and simply delete it and save (you must be an administrator to do this)
“jdk.jar.disabledAlgorithms=MD2, MD5, RSA keySize < 128”,
this has worked…
It worked when i commented without #.
Thanks a lot.
Thank you sooo much! I was getting crazy trying to figure out how to access my old Intelligent House Control (IHC). All other attempts I made didn’t work, but this one did.
Thank you very much. You are awesome!!
thank you so much… was struggling to get out of this error… you really saved time.. gr8
thanks that worked. file in ubuntu /etc/java-8-oracle/security/java.security
Thank you, it worked for me. I was running Lenovo-RD650 consol and the Java was not opening.
Thank you very much, it really works. Much better then those copy and past!
Thanks, this worked great! connecting to a poweredge t710 idrac 6
Beautiful, worked for me first go :). Thanks.
Thanks, perfect steps.
I can not save the it after adding the #.
In Linux i have commented out the property in all possible places but still getting the same error ? Any alternative thoughts ??
Thank you so much. It helped me. But I have commented out “jar..”
thank you man
Life saver – thank you!
I am using java 1.5 and i am not able to see the line ‘jdk.jar.disabledAlgorithms=MD2..’ in java.security file. could you please provide me another way to resolve same issue.
It will great help to me!
You saved a life! Works like a charm.
I usually don;t reply or write an comment on websites which help me do my work, but this solution for my iDrac/JAVA problem works just perfect on Java8 !! Thanks a lot for this great tip, it really saves my day! :)