|Applies To||RSA Federated Identity Manager (FIM) 4.x|
|Issue||FIM - Encryption Algorithms Q&A|
Questions concerning FIM encryption algorithms
1. Can FIM be configured so that a particular SSO connection can use one encryption algorithm versus another? For example, if we are acting as an IDP and one client requires TRIPLE DES encryption and another client requires AES 256, can FIM be configured to support this scenario?
2. Does FIM support additional encryption algorithms other than the TRIPLE DES, AES128, and AES 256? If so, how do we accomplish this?
? Crypto-J 4.0 FIPS: jsafeJCEFIPS.jar
Federated Identity Manager uses the encryption algorithm to encrypt assertions and name identifiers. Federated Identity Manager only supports AES 128, AES 256, and triple DES. If you want to use AES-256 for encryption, you must download the JCE Unlimited Strength Jurisdiction Policy files provided with the Sun JDK 1.4.2.
|Legacy Article ID||a51912|