Previous Topic: Information Card Authentication SchemesNext Topic: How to Configure the Policy Server for ICAS

Policy Server GuidesPolicy Server Configuration GuideAuthentication SchemesInformation Card Authentication SchemesConfigure a Windows Authentication SchemeICAS Prerequisites

ICAS Prerequisites

Before you can implement ICAS, the following conditions must be met:

Web Browser Configuration

One of the following web browsers must be used:

Web Server Configuration

The Web Server must be configured for SSL communication. This configuration protects the fcc file.

Note: For more information, see the Web Agent Configuration Guide.

Web Agent Configuration

The InfoCard.fcc file that is shipped with the Web Agent kit must be customized for each instance of ICAS.

Note: For more information, see the Web Agent Configuration Guide.

Java Runtime Environment (JRE) Configuration

The Java Runtime Environment must be configured to decrypt security tokens that are encrypted with strong encryption algorithms.

Policy Server Configuration

Policy Server Configuration includes the following tasks:

Configure the Java Runtime Environment (JRE) for ICAS

Configure the Java Runtime Environment (JRE) by installing the Java Cryptography Extension (JCE) Unlimited Strength Jurisdiction policy files. These files are needed to decrypt security tokens that are encrypted with strong encryption algorithms.

Important! Back up the default policy files that are shipped with the JRE before installing the new policy files.

Follow these steps:

  1. Download the Java Cryptography Extension (JCE) Unlimited Strength Jurisdiction policy files from http://www.oracle.com/technetwork/java/index.html.
  2. Install them in the $NETE_JRE_ROOT\lib\security directory.
  3. Add the following line to the $NETE_JRE_ROOT\lib\security\java.security file: 
    security.provider.7=com.rsa.jsafe.provider.JsafeJCE