Hello - I have been reading this document to configure NSS. When I configure my configuration file to look like this name = NSS nssLibraryDirectory = /usr/lib64 nssDbMode = noDb attributes = compatibility Things "run" in my environment and my trust provider class loads and runs When I configure my configuration file to this name = NSS
nssLibraryDirectory = /usr/lib64 nssSecmodDirectory = /etc/pki/nssdb/fips attributes = compatibility The process dies immediately - no logs written to determine an error. What can be the problem when adding this Secmod directory path? Note - in my Secmod directory path I have run these commands only (haven't filled the databases with certs/keys). certutil -N -d . and modutil -fips = true -dbdif . -force Anna. --- On Tue, 2/2/10, David Stutzman <dstutz.m...@nospam.dstutz.com> wrote: From: David Stutzman <dstutz.m...@nospam.dstutz.com> Subject: Re: Mozilla-JSS in FIPS compliant mode To: dev-tech-crypto@lists.mozilla.org Date: Tuesday, February 2, 2010, 4:27 AM On 2/1/2010 1:39 PM, Anna Gellatly wrote: > Thanks for responding David - > If the Mozilla JCA isn't JSS compatible then I'm barking up the wrong tree. > I see you included the pkcs#11 java doc but how do you ensure sun's > PKCS#11 uses nss? I see that you need to set the configuration > directives - but I have no idea how to "set configuration directives"? > Are they talking java vm command line option setting? > Does nss have a document that shows how to set these directives? > Anna. The rest of that document below explains how to configure any PKCS#11 device. NSS is just a special case that they have added some extras for. > >http://java.sun.com/javase/6/docs/technotes/guides/security/p11guide.html#NSS Dave -- dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
-- dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
