Java requirements

To support the cryptographic services in IBM® Cognos® Analytics, you may be required to update your version of Java™ or set a JAVA_HOME environment variable. Depending on your security policy requirements, you may also have to install the unrestricted Java Cryptography Extension (JCE) policy file.

You can use an existing Java Runtime Environment (JRE) or the JRE that is provided with IBM Cognos Analytics.

Cryptographic standards

By default, IBM Cognos Analytics is configured to support the NIST SP800-131a security standard. To be compliant with this security standard, you must use a JRE that also supports this standard.

For more information about the supported Java versions for IBM Cognos Analytics, see the IBM Software Product Compatibility Reports page (www.ibm.com/support/pages/node/735235).

For more information about this security standard, see the IBM SDK, Java Technology Edition Knowledge Center (www.ibm.com/support/knowledgecenter/SSYKE2/welcome_javasdk_family.html).

JAVA_HOME

Set a JAVA_HOME environment variable if you want to use your own Java.

Ensure that the JRE version is supported by IBM Cognos products.

On Microsoft Windows operating systems, if you do not have a JAVA_HOME variable, the JRE files that are provided with the installation are used.

To verify that your JRE is supported, see the IBM Software Product Compatibility Reports page (www.ibm.com/support/pages/node/735235).

Unrestricted JCE Policy File

JREs include a restricted policy file that limits you to certain cryptographic algorithms and cipher suites. If you require a wider range of cryptographic algorithms and cipher suites, unrestricted (unlimited) policy files are now provided by default. They can be found here:

install location/ibm-jre/jre/lib/security/policy/unlimited/US_export_policy.jar
install location/ibm-jre/jre/lib/security/policy/unlimited/local_policy.jar

In addition, for Java that is provided by IBM, the unrestricted JCE policy files are also available here.