Use Java Applets
Some tools are available through programs known as Java™ applets. These programs require you to have the Java™ Runtime Environment (JRE) downloaded
and installed on your local computer. You only need to download and install JRE once; in most cases, you are prompted to download JRE only if it is not present
on your computer when you attempt to use one of the Java applets.
Depending on your environment, you might need to take the following additional steps:
- If you are using an applet in a secure SSL environment, you might need to download a certificate. Without the certificate, an error can occur. See Download certificate below for instructions.
- If you are using Mozilla Firefox version 2, you must ensure that you have a supported JRE version. Contact your application administrator for instructions.
- If you will use Search Designer or view CM8 MODCA documents, you might need to increase JRE memory. See Increase JRE memory below for instructions.
Download certificate
If you are using a Java applet, such as Search Designer, in an SSL environment, you might experience an SSLHandshakeException because the appropriate certificate does not exist on your computer. Use the following procedure to download a certificate, and then import the certificate into your Java plug-in keystore.
To download and import a certificate
- Log in to your application in Internet Explorer, and open one of the Java applets, such as Search Designer or Image Viewer.
- At the Security Alert dialog box or Certificate Error alert, click View Certificate. (You can also click the SSL security icon to locate the View Certificate option.) On the Details tab of the Certificate dialog box, click Copy to File. This starts the Certificate Export wizard.
- Follow the instructions in the wizard to export the certificate to a file. Use the following
information when prompted for information
by the wizard:
- Export File Format: Use the default selected by the wizard.
- File to Export: Choose any location and name for the export file.
- When the wizard is finished and you have closed the related dialog boxes, locate the plug-in trust keystore file. The file is named cacerts, and is located in the \lib\security subfolder where JRE is installed; for example, C:\Program Files\Java\jre\lib\security.
TIP You can use the Windows search function to look for cacerts.
- Open a command window and navigate to the folder where the cacerts file is located.
- Enter the following at the command line to run the JRE's keytool utility. This imports the certificate.
Once imported, you should be able to run the Java applets without an SSLHandshakeException.
..\..\bin\keytool -import -file "<exportfilename>" -alias <alias> -keystore cacerts -storepass <password>
where
exportfilename
is the full path and filename of the file you exported above.
alias is a unique name identifying the keystore entry.
password is the keystore password. The default password is changeit.
Increase JRE memory
Some Java applets, such as Search Designer and the CM8 MODCA document viewer, require more memory to function properly.
To increase JRE memory
- In the Windows Control Panel, double-click the Java icon.
TIP If this icon doesn't appear, it might be necessary to switch from Category View to Classic View.
- In the Java tab, click View in the Java Applet Runtime Settings section.
- In the Java Runtime Parameters column, add the following parameters:
-Xms256m -Xmx256m
- Save your changes and close the Java Control Panel.