-
Language:
English
-
Language:
English
Red Hat Training
A Red Hat training course is available for JBoss Enterprise Application Platform Common Criteria Certification
3.3.4. Download Patches
The Java Security Manager (JSM) requires a Common Criteria tested and certified policy file to control how applications interact with the application server under an evaluated configuration.
Procedure 3.4. Install required security patches
Follow this procedure to install required security patches.
Important
Ensure you verify the authenticity of the files you download in the following procedure by verifying the SHA-256 checksums according to Section 3.3.2, “Verifying the Downloaded Files”
- Open http://access.redhat.com in a web browser.
- Hover over the Downloads option in the menu across the top of the page.
- In the Downloads menu, click JBoss Enterprise Middleware
- Enter your login information.Result:
You are taken to the Software Downloads page.
- Select
Application Platform
in the drop-down box or in the menu on the left.Result:You are presented with a list of file downloads.
- Select 5.1.0 or 5.1.1 from the Version drop-down box, depending on the platform version you want to install.
- For 5.1.1, download the JBoss Remoting 2.5.3SP1 security advisory:
- Click the Security Advisories tab label.Result:
You are presented with the list of available security advisories.
- Click the Apply jboss remoting 2.5.3SP1 fix link.
- On the displayed Software Details tab, click the Download link next to the File drop-down box and confirm the download of the
JBPAPP-5386.zip
file.Note
Record the SHA-256 checksum from the Software Details screen. You use this checksum to verify the authenticity of the download in Section 3.3.2, “Verifying the Downloaded Files”
- Download
security_cc.policy
to EAP 5.1:- Click the Patches tab label.Result:
You are presented with the list of available security advisories.
- Click the Add security_cc.policy to EAP 5.1x link.
- On the displayed Software Details tab, click the Download link next to the File drop-down box and confirm the download of the
JBPAPP-5367.zip
file.Note
Record the SHA-256 sum from the Software Details screen. You use this checksum to verify the authenticity of the download in Section 3.3.2, “Verifying the Downloaded Files”