With Java update 7u11 the default security level has been changed to "high." Is it possible to revert this security level to "medium" via script or registry change?

Answer Summary:
http://docs.oracle.com/javase/6/docs/technotes/guides/deployment/deployment-guide/properties.html contains information for setting system wide java configuration.
Cancel
0 Comments   [ + ] Show Comments

Comments

Please log in to comment

Community Chosen Answer

3

You might want to check here:

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\JavaSoft\Java Runtime Environment\1.7.0_11\MSI

 

and this article for the settings

http://docs.oracle.com/javase/7/docs/technotes/guides/jweb/client-security.html

 

Answered 01/15/2013 by: nshah
Red Belt

  • This pointed me to develop the silent installs for 32bit and 64 bit. Make sure you uninstall previous versions first!!!
  • >Make sure you uninstall previous versions first!!!
    Why? JREs are designed to co-exist side-by-side, aren't they? Also, there are some dumb apps which check for specific versions.
Please log in to comment

Answers

1
here is my command line, it worked. Please refer to the last parameter: WEB_JAVA_SECURITY_LEVEL=M

WEB_JAVA_SECURITY_LEVEL=M
WEB_JAVA_SECURITY_LEVEL=M
jre-7u55-windows-i586.exe /s /v"/qn IEXPLORER=1 MOZILLA=1 REBOOT=Suppress JAVAUPDATE=0 JU=0 AUTOUPDATECHECK=0 WEB_JAVA_SECURITY_LEVEL=M" /L

:)
Answered 07/01/2014 by: oneway
White Belt

Please log in to comment
1

Keeping this lovely caveat in mind:

http://www.java.com/en/download/help/jcp_securityslider.xml

I used these to silently install:

 

jre-7u11-windows-i586.exe /s /v"IEXPLORER=1 MOZILLA=1 JAVAUPDATE=1 AgreeToLicense=1 EULA=1 WEB_JAVA_SECURITY_LEVEL=M /QN"

jre-7u11-windows-x64.exe /s /v"IEXPLORER=1 MOZILLA=1 JAVAUPDATE=1 AgreeToLicense=1 EULA=1 WEB_JAVA_SECURITY_LEVEL=M /QN"

Answered 01/15/2013 by: ronfalkoff
Third Degree Blue Belt

Please log in to comment
1
Answered 01/15/2013 by: jagadeish
Red Belt

Please log in to comment
1

Was able to figure this one out.
http://docs.oracle.com/javase/6/docs/technotes/guides/deployment/deployment-guide/properties.html

Two files,  deployment.config and deployment.properties stored in %systemroot%\Windows\Sun\Java\Deployment allow for system wide configuration of Java.

deployment.config specifies the location of deployment.properties.

deployment.system.config=file\C:\:/Windows/Sun/Java/Deployment/deployment.properties
deployment.system.config.mandatory=true

in deployment.properties are the actual configuration specifications.

deployment.security.level=MEDIUM

If a user has already configured something (the security level) in their own user level deployment.properties, it will overtake the system properties. There is probably a way to get around this, but it is irrelevant to my current needs. 

Answered 01/16/2013 by: muebel
Tenth Degree Black Belt

  • I have been struggling with this issue for days. I have placed the deployment.config that points to a server share with the deployment.properties. I thought maybe you last comment was the answer but I logged in as a first time user and opened the Java control panel. The customized settings in my deployment.properties were not set and a deployment.properties file was created in this users profile.

    This worked fine for me before version 1.7
    Thanks.
  • We had a similar situation. I created a wrapper that installs the JRE msi. Next I copy the deployment.properties file with the configuration we need to the appropriate folder on the target machine. Then I launch a script that reads the user's profile and deletes any existing deployment.properties files.
    So, when Java is started it reads and uses the deployment.properties file
Please log in to comment
Answer this question or Comment on this question for clarity
Admin Script Editor
Admin Script Editor is an integrated scripting environment available free here at ITNinja

Share