Question about NSS and FIPS 140-2 Cryptography for JBoss 5.1 on Windows 7
Running JBoss EAP 5.1 on Windows 7, we are following these guidelines for using NSS to enable FIPS 140-2 compliant cryptography modules:
https://access.redhat.com/knowledge/solutions/42301
The instructions say to edit
$JAVA_HOME/jre/lib/security/java.security and add this security provider:
security.provider.1=sun.security.pkcs11.SunPKCS11 /path/to/nss_pkcs11_fips.cfg
My question is, how do you specify /path/to/nss_pkcs11_fips.cfg? Is it relative to JAVA_HOME? Can the path be absolute? Does it matter where nss_pkcs11_fips.cfg is?
Thanks.
Responses