{"id":113,"date":"2014-05-19T18:58:50","date_gmt":"2014-05-19T18:58:50","guid":{"rendered":"http:\/\/patrick4pitss.wordpress.com\/?p=119"},"modified":"2017-12-19T17:14:07","modified_gmt":"2017-12-19T16:14:07","slug":"oracle-forms-how-to-use-self-signed-certificates-with-java-7-update-40-or-higher","status":"publish","type":"post","link":"https:\/\/pitss.org\/de\/oracle-forms-how-to-use-self-signed-certificates-with-java-7-update-40-or-higher\/","title":{"rendered":"Oracle Forms \u2013 How to use Self Signed Certificates with Java 7 Update 40 or higher"},"content":{"rendered":"<p style=\"color: #000000;\">Self-signing jar files to use for Oracle Forms have been a way to sign jar files without using a trusted vendor. Oracle has provided the sign_webutil.bat (or sign_webutil.sh) script to use for self-signing a jar file. As the self-signed certificates do not contain a trusted publisher name, any time a Forms application starts up, you may notice a <a href=\"https:\/\/pitss.org\/de\/top-java-frameworks-2018\/\">Java<\/a> security warning with a publisher \u201cUNKNOWN\u201d. This is because the self-signed certificate is not generated from a trusted vendor (VeriSign, Comodo, GoDaddy, etc.) and is not in the \u201cSigner CA\u201d list in the Java Control Panel on a user\u2019s PC. This has been noticed more in recent months as users are unable to \u201calways remember this option\u201d when choosing to run an application with an UNKNOWN publisher starting with Java 7 Update 40 (or even getting an Application Blocked error when using JRE 7u51 or higher).<\/p>\n<p style=\"color: #000000;\">The best solution would be to sign your jar files with trusted code-signing certificates from a trusted vendor. However, you also have the option to add the self-signed certificate to your Java Control Panel to the list of Signer CA certificates which will add the self-signed certificate to the trusted list allowing you to run the application without the warning appearing (however, a Java notification will still appear with a publisher name that would be considered more trustworthy than \u201cUNKNOWN\u201d).<\/p>\n<p style=\"color: #000000;\">To configure this, you will need to update the sign_webutil script (used for self-signing jar files) in the platform running the Forms and Reports environment. After this, you will need to export a CSR certificate from the keystore which the script uses.<\/p>\n<p style=\"color: #000000;\">Follow the steps provided on the Pitss Knowledgebase:<\/p>\n<p style=\"color: #000000;\"><a href=\"http:\/\/pitss.org\/us\/2014\/05\/15\/how-to-add-self-signed-certificates-to-the-list-of-trusted-certificates-in-the-java-runtime\/\" rel=\"nofollow\">http:\/\/pitss.org\/us\/2014\/05\/15\/how-to-add-self-signed-certificates-to-the-list-of-trusted-certificates-in-the-java-runtime\/<\/a><\/p>\n<p><a href=\"http:\/\/feeds.wordpress.com\/1.0\/gocomments\/patrick4pitss.wordpress.com\/119\/\" rel=\"nofollow\"><img decoding=\"async\" src=\"http:\/\/feeds.wordpress.com\/1.0\/comments\/patrick4pitss.wordpress.com\/119\/\" alt=\"\" border=\"0\" \/><\/a> <img loading=\"lazy\" decoding=\"async\" src=\"http:\/\/pixel.wp.com\/b.gif?host=patrick4pitss.wordpress.com&amp;blog=33916245&amp;%23038;post=119&amp;%23038;subd=patrick4pitss&amp;%23038;ref=&amp;%23038;feed=1\" alt=\"\" width=\"1\" height=\"1\" border=\"0\" \/><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Self-signing jar files to use for Oracle Forms have been a way to sign jar files without using a trusted vendor. Oracle has provided the sign_webutil.bat (or sign_webutil.sh) script to use for self-signing a jar file. As the self-signed certificates &#8230; <a href=\"http:\/\/patrick4pitss.wordpress.com\/2014\/05\/19\/oracle-forms-how-to-use-self-signed-certificates-with-java-7-update-40-or-higher\/\">Continue reading <span>&#8594;<\/span><\/a><img loading=\"lazy\" decoding=\"async\" alt=\"\" border=\"0\" src=\"http:\/\/pixel.wp.com\/b.gif?host=patrick4pitss.wordpress.com&amp;blog=33916245&amp;post=119&amp;subd=patrick4pitss&amp;ref=&amp;feed=1\" width=\"1\" height=\"1\" \/><\/p>\n","protected":false},"author":48,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_et_pb_use_builder":"","_et_pb_old_content":"","_et_gb_content_width":"","footnotes":""},"categories":[100],"tags":[],"class_list":["post-113","post","type-post","status-publish","format-standard","hentry","category-general"],"_links":{"self":[{"href":"https:\/\/pitss.org\/de\/wp-json\/wp\/v2\/posts\/113","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/pitss.org\/de\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/pitss.org\/de\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/pitss.org\/de\/wp-json\/wp\/v2\/users\/48"}],"replies":[{"embeddable":true,"href":"https:\/\/pitss.org\/de\/wp-json\/wp\/v2\/comments?post=113"}],"version-history":[{"count":2,"href":"https:\/\/pitss.org\/de\/wp-json\/wp\/v2\/posts\/113\/revisions"}],"predecessor-version":[{"id":18488,"href":"https:\/\/pitss.org\/de\/wp-json\/wp\/v2\/posts\/113\/revisions\/18488"}],"wp:attachment":[{"href":"https:\/\/pitss.org\/de\/wp-json\/wp\/v2\/media?parent=113"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/pitss.org\/de\/wp-json\/wp\/v2\/categories?post=113"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/pitss.org\/de\/wp-json\/wp\/v2\/tags?post=113"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}