Java error: Unsigned application requesting unrestricted access to sytem

Starting with Java version 8 Update 131, Oracle decided to treat applications that are signed with the MD5withRSA or MD5withDSA algorithms as unsigned, therefore JNLP (Java Network Launch Protocol) with not run them.

When I try to access one of my Dell servers via the iDRAC interface, I get this error:

The reason for this is that the application was signed with a weak cryptographic algorithm (such as MD5witRSA ) and Java will not run the application due to security reasons since it sees it as unsigned.

To allow applications signed with a weak cryptographic algorithm to run, you need to disable jdk.jar.disabledAlgorithms property in the Java master security properties file, called java.security. Do this at your own risk!

The java.security file is located in C:\Program Files\Java\jre1.8.0_171\lib\security folder for the 64-bit systems and C:\Program Files (x86)\Java\jre1.8.0_171\lib\security folder for the 32-bit systems.

To edit the java.security file you must Run as administrator your favorite text editor, then open the file. Comment out the jdk.jar.disabledAlgorithms property and save the file.

Restart your browser and connect again. This time, the JNLP should run the application.

One Reply to “Java error: Unsigned application requesting unrestricted access to sytem”

  1. I had exactly the same problem(Dell R710) and your solution worked perfectly . Is there a way to reduce the security risk by allowing only the idracs specific IP’s to use the weak MD5withRSA or MD5withDSA ?

Leave a Reply