In our network, we use a deployment rule set to only allow applets that we deem necessary, and all others are blocked. This has been working fine. However recently I've been asked to add a website to the allowed list. This website downloads a jnlp file, then launches the jnlp locally, and is blocked every time. Now I'm not that well versed in java applets. But I've added the website address that this applet calls too, and have had no luck with this running. Everything I've tried has not worked.
This is a snippet of the ruleset.xml
|<id location="http://elm.elluminate.com:80/" /> <!-- Assessor Online Class -->|
|<action permission="run" />|
The java console has not been helpful, as the application is blocked before java even starts...after the jnlp verifies, it blocks the application due to the ruleset. How can i set this ruleset up so that this jnlp is allowed to run?
To allow a local jnlp to run without any prompts using Deployment Rule Sets, you can use a rule to allow all the applets signed with a specific certitificate:
<certificate hash="794F53C746E2AA77D84B843BE942CAB4309F258FD946D62A6C4CCEAB8E1DB2C6" />
<action permission="run" />
You can get your certificate hash in SHA-256 from the signed jar file following this doc: