Skip to main content
Skip table of contents

Encryption type not supported when using SSO

Legal Limitations on Cryptographic Algorithms

iGrafx cannot ship to with a complete set of cryptographic algorithms due to the legal limitations in some countries.

To obtain the cryptographic algorithms you please see the below information and make sure to not violate your local regulations.

See http://docs.oracle.com/javase/7/docs/technotes/guides/security/SunProviders.html for more detailed information and an explanation of the Import Limits on Cryptographic Algorithms.

Add Java Cryptography Extension

Problem: Single Sign On might not be successful due to unsupported encryption types.

This can be identified in the igrafx_server.log. Make sure to follow the steps in Kerberos to setup logging.

 

igrafx_server.log

CODE 
Caused by: GSSException: Failure unspecified at GSS-API level (Mechanism level: Encryption type AES256 CTS mode with HMAC SHA1-96 is not supported/enabled)

 

It is necessary to update the Java Cryptography Extension (JCE).

 

  1. Go to Java SE Downloads and scroll down to the JCE section
  2. Download jce_policy-8.zip
  3. Extract the file
  4. Navigate to [iGrafx Platform]\jre8\lib\security
  5. Replace local_policy.jar and US_export_policy.jar with the new files
  6. Restart the iGrafx Platform service

 

JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.

Contact Support Close