======Sun - Java======
[[http://www.oracle.com/technetwork/java/eol-135779.html|Oracle Java SE Support Roadmap]] \\
[[http://www.java.com/en/download/help/silent_install.xml|Java.com - How do I arrange a silent (unattended) Java installation?]] \\

=====Blogposts/Articles=====
[[http://sgwindowsgroup.org/blogs/panda/archive/2010/05/14/disable-java-auto-update-through-gpo.aspx|Panda's Blog - Disable Java Auto Update through GPO]] describes how you can set EnableJavaUpdate DWORD in the registry below HKLM\SOFTWARE\JavaSoft\Java Update\Policy to 0 via GPO.\\

[[http://www-01.ibm.com/support/docview.wss?uid=swg21427068|Sun Java 1.6.0_19 and higher is causing a security warning for WebSphere/Rational Host On-Demand clients]] \\
[[http://docs.oracle.com/javase/6/docs/technotes/guides/jweb/mixed_code.html|Oracle Java SE Documentation - Mixing Signed and Unsigned Code Ensuring Application and Applet Security]] \\

=====Troubleshooting=====
[[http://java.com/en/download/help/error_25099.xml|Error: 25099 during Java installation]] (file in use) \\

====Algorithm constraints check failed: MD5withRSA====
// Tested with Java Runtime 1.8 update 77. //

When starting a Java applet, in this case a Supermicro remote IPMI console, you are greeted with the message:

"Failed to validate certificate. The application will not be executed."

{{:sun:mwsnap362_2016-03-27.png|}}

Clicking on More Information... shows:

"PKIX path validation failed: java.security.cert.CertPathValidatorException: Algorithm constraints check failed: MD5withRSA"

{{:sun:mwsnap363_2016-03-27.png}}

In other words: Java 1.8 update 77 is set to no longer allow certificate with an MD5 signature.

To work around this:
  - Open <java install location>\lib\security\java.security in an (elevated) text editor.
    - In this case: C:\Program Files (x86)\Java\jre1.8.0_77\lib\security\java.security
  - Find the following line:<code>jdk.certpath.disabledAlgorithms=MD2, MD5, RSA keySize < 1024</code>
  - Prefix it with a # so it looks like this:<code>#jdk.certpath.disabledAlgorithms=MD2, MD5, RSA keySize < 1024</code>
  - Add the following line below the previous line to allow the use of MD5 certificates:<code>jdk.certpath.disabledAlgorithms=MD2, RSA keySize < 1024</code>
  - Restart the browser and try accessing the Java application again, if no further Java constraints are met it should now work.

Source: [[https://communities.ca.com/docs/DOC-231149680|CA Communities - TECH TIP: "Failed to validate certificate" error on launching Live Health with Java 1.7u40 and later]] \\