Stéphane Thirion
  • Home
  • Consulting – Raidho
  • homelab
3K
0
0
0
Stéphane Thirion
Stéphane Thirion
  • Home
  • Consulting – Raidho
  • homelab
  • Citrix
  • Experience
  • Microsoft
  • Windows 2008 R2
  • Windows 2012
  • Windows 7
  • Windows 8
  • Windows XP
  • XenApp
  • XenDesktop

Java Runtimes JRE7 – Your Java version is insecure popup

  • October 11, 2013
  • Stephane Thirion
Total
0
Shares
0
0
0
0
0
0
0

This one has been pain in the ass to find out… Since Java 7 (1.7_xx) the security and setting management is a total nightmare. This is so messy you can’t find a reliable information on Oracle website… The worse thing is all the mechanism seems to change between versions… from 1.7_01 to _11 is one way to do thing and version after it’s done another way…

Here is the ugly pop up I want to eliminate from the user interface on the XenApp Desktop.

ScreenShot480

To do so, I had to check every change within files, registry to finally find out everything was located in the registry for this version of java, JRE7 1.7_13… So I wanted to create a GPP to target user connected on the XenApp servers, here is my xml file created from a registry export :

JRE7 xml GPP   
<?xml version="1.0" encoding="UTF-8"?>
<Collection clsid="{53B533F5-224C-47e3-B01B-CA3B3F3FF4BF}" name="reg">
<Collection clsid="{53B533F5-224C-47e3-B01B-CA3B3F3FF4BF}" name="HKEY_CURRENT_USER">
<Collection clsid="{53B533F5-224C-47e3-B01B-CA3B3F3FF4BF}" name="Software">
<Collection clsid="{53B533F5-224C-47e3-B01B-CA3B3F3FF4BF}" name="AppDataLow">
<Collection clsid="{53B533F5-224C-47e3-B01B-CA3B3F3FF4BF}" name="Software">
<Collection clsid="{53B533F5-224C-47e3-B01B-CA3B3F3FF4BF}" name="JavaSoft">
<Collection clsid="{53B533F5-224C-47e3-B01B-CA3B3F3FF4BF}" name="DeploymentProperties">
<Registry clsid="{9CD4B2F4-923D-47f5-A062-E897DD1DAD50}" name="deployment.modified.timestamp" status="deployment.modified.timestamp" image="7" changed="2013-10-11 07:38:28" uid="{1C780ADB-891C-1BEC-06C7-4FC281612390}">
<Properties action="U" displayDecimal="0" default="0" hive="HKEY_CURRENT_USER" key="SoftwareAppDataLowSoftwareJavaSoftDeploymentProperties" name="deployment.modified.timestamp" type="REG_SZ" value="1381415837129"/>
<Filters/>
</Registry>
<Registry clsid="{9CD4B2F4-923D-47f5-A062-E897DD1DAD50}" name="deployment.expiration.decision.10.13.2" status="deployment.expiration.decision.10.13.2" image="7" changed="2013-10-11 07:38:28" uid="{B4DBC605-68F5-A440-1196-724E6001512C}">
<Properties action="U" displayDecimal="0" default="0" hive="HKEY_CURRENT_USER" key="SoftwareAppDataLowSoftwareJavaSoftDeploymentProperties" name="deployment.expiration.decision.10.13.2" type="REG_SZ" value="later"/>
<Filters/>
</Registry>
<Registry clsid="{9CD4B2F4-923D-47f5-A062-E897DD1DAD50}" name="deployment.expiration.decision.suppression.10.13.2" status="deployment.expiration.decision.suppression.10.13.2" image="7" changed="2013-10-11 07:38:28" uid="{1297F911-3EEB-997E-7EF5-8C767ED53399}">
<Properties action="U" displayDecimal="0" default="0" hive="HKEY_CURRENT_USER" key="SoftwareAppDataLowSoftwareJavaSoftDeploymentProperties" name="deployment.expiration.decision.suppression.10.13.2" type="REG_SZ" value="true"/>
<Filters/>
</Registry>
<Registry clsid="{9CD4B2F4-923D-47f5-A062-E897DD1DAD50}" name="deployment.version" status="deployment.version" image="7" changed="2013-10-11 07:38:28" uid="{A9608F24-1256-B865-97D6-1652C4039605}">
<Properties action="U" displayDecimal="0" default="0" hive="HKEY_CURRENT_USER" key="SoftwareAppDataLowSoftwareJavaSoftDeploymentProperties" name="deployment.version" type="REG_SZ" value="7.0"/>
<Filters/>
</Registry>
<Registry clsid="{9CD4B2F4-923D-47f5-A062-E897DD1DAD50}" name="deployment.expired.version" status="deployment.expired.version" image="7" changed="2013-10-11 07:38:28" uid="{8410910C-81D2-9F6B-99F1-75C753B5A060}">
<Properties action="U" displayDecimal="0" default="0" hive="HKEY_CURRENT_USER" key="SoftwareAppDataLowSoftwareJavaSoftDeploymentProperties" name="deployment.expired.version" type="REG_SZ" value="10.13.2"/>
<Filters/>
</Registry>
<Registry clsid="{9CD4B2F4-923D-47f5-A062-E897DD1DAD50}" name="deployment.expiration.decision.timestamp.10.13.2" status="deployment.expiration.decision.timestamp.10.13.2" image="7" changed="2013-10-11 07:38:28" uid="{385BCE4C-8C4D-D22E-D443-43451D22D3DD}">
<Properties action="U" displayDecimal="0" default="0" hive="HKEY_CURRENT_USER" key="SoftwareAppDataLowSoftwareJavaSoftDeploymentProperties" name="deployment.expiration.decision.timestamp.10.13.2" type="REG_SZ" value="10/10/2013 16:37:16"/>
<Filters/>
</Registry>
</Collection>
</Collection>
</Collection>
</Collection>
</Collection>
</Collection>
</Collection>

Next, I wanted to filter this GPP with a WMI filter, this WMI Query will look for locations of the JRE7 Folder on the System and if found it will apply the policy.

ScreenShot482

WMI filter syntax   
Select * From win32_Directory where (name="c:YourPrimaryInstallationFolderJavajre7" or name="c:YourSecondInstallationFolderJavajre7")

 

And this works ! I didn’t need to do anything with deployment.properties and deployment.config as described everywhere on the Oracle website… (This website is really pain in the ass to find good documentation…)

I hope it will help, and I hope Oracle will stop to change the way we need to use to manage Java configuration….

Total
0
Shares
Tweet 0
Share 0
Share 0
Share 0
Share 0
Share 0
Share 0
Related Topics
  • 1.7
  • 1.7_13
  • Global Preference Policie
  • GPP
  • Java
  • Java7
  • JRE
  • Windows
  • wmi
  • WMI Filter
  • XenApp
  • XenDesktop
Stephane Thirion

Previous Article
  • Citrix
  • Microsoft
  • PowerShell
  • Provisioning Services
  • VMware
  • vSphere
  • Windows 2008 R2
  • Windows 2012
  • XenDesktop
  • XenServer

Citrix XenDesktop 7 – Create Persistent Hypervisor Connection and Hosting Unit, Unattended

  • July 8, 2013
  • Stephane Thirion
View Post
Next Article
  • ArchY.net Site

Happy holidays !

  • December 19, 2013
  • Stephane Thirion
View Post
You May Also Like
View Post
  • Experience
  • Linux
  • VMware
  • vSphere

multipathd errors in /var/log/syslog

  • Stephane Thirion
  • August 2, 2022
View Post
  • Experience
  • Raspberry

Install Zigbee2MQTT on a Raspberry Pi Zero W

  • Stephane Thirion
  • July 8, 2022
View Post
  • Citrix
  • CTP
  • Uncategorized

This is the end of an era

  • Stephane Thirion
  • February 16, 2022
View Post
  • Docker
  • Experience
  • Kubernetes
  • Linux
  • Raspberry

Kubernetese cluster use with Crypto Currency (Monero)

  • Stephane Thirion
  • January 4, 2022
View Post
  • VMware
  • vSphere
  • Windows 2022

Migrating FSMO roles Windows 2022 Server

  • Stephane Thirion
  • January 3, 2022
View Post
  • ADC
  • Experience
  • Linux

Cloud yes but no, thanks (there is some Citrix)

  • Stephane Thirion
  • December 7, 2021
View Post
  • Azure
  • Azure
  • PowerShell
  • Scripting
  • Security

Export all Admin Roles and members from Azure AD

  • Rodolphe Herpeux
  • March 25, 2021
View Post
  • RDS
  • Security
  • Windows 2016

RDS access to applications with second authentication factor by smartcard

  • Rodolphe Herpeux
  • January 7, 2021
vmware
Coinbase – Affiliated link
Blog Stats
  • 1,237,011 hits
Categories
  • Amazon (1)
  • Apple (20)
    • iOS (5)
    • Mac OSx (11)
  • ArchY.net Site (30)
  • Azure (8)
  • Certifications (3)
  • Citrix (207)
    • ADC (1)
    • Citrix Virtual Apps and Desktops (3)
    • NetScaler (12)
    • Password Manager (3)
    • Personal vDisk (5)
    • Power and Capacity Management (3)
    • Provisioning Services (22)
    • Receiver (29)
    • ShareFile (8)
    • Single Sign On (3)
    • SmartAuditor (2)
    • Storefront (12)
    • Synergy (25)
    • User Profile Management (2)
    • VDI (7)
    • WebInterface (21)
    • XenApp (84)
    • XenApp Plugin (3)
    • XenClient (10)
    • XenDesktop (55)
    • XenServer (42)
  • Cloud (12)
  • Crystal Ball (2)
  • CTP (13)
  • Docker (2)
  • Events (35)
    • E2E – PubForum (9)
    • Geek Speak (3)
  • Experience (53)
  • Kubernetes (2)
  • Licensing (3)
  • Linux (12)
  • Microsoft (145)
    • Azure (8)
    • Office365 (4)
    • PowerShell (18)
    • RDS (5)
    • Windows 10 (6)
    • Windows 2003 (21)
    • Windows 2008 (20)
    • Windows 2008 R2 (54)
    • Windows 2012 (13)
    • Windows 2012R2 (13)
    • Windows 2016 (18)
    • Windows 2019 (4)
    • Windows 2022 (1)
    • Windows 7 (27)
    • Windows 8 (19)
    • Windows Virtual Desktop (1)
    • Windows XP (11)
  • News (5)
  • Raidho (2)
  • Raspberry (3)
  • Scripting (13)
  • Security (4)
  • Slide Deck (1)
  • Thin Clients (3)
  • Twitter (1)
  • Ubiquiti (1)
  • Uncategorized (12)
  • VMware (27)
    • VMWare WorkStation (2)
    • vSphere (15)
Stéphane Thirion
Don't Follow the Trend

Input your search keywords and press Enter.

 

Loading Comments...