Problem

We need a description on how to revert the system to non-FIPS mode WITHOUT having to reinstall everything.

We have already received a new, non-FIPS, license, but just replacing the license file and restarting B2Bi does not solve the problem.

We also tried changing the ”fips.mode=true" flag in crossworks.properties, which also does not work. It seems like all libraries for non-FIPS operation have not been installed.

Resolution

During installation, different jars are installed, depending the license setting for FIPS. So when you change the Crossworks value, B2Bi is not able to find the required jars, as they are not installed.

The required jar iaik_jce_full-x.yy.jar is a non-FIPS library. So are also the following libraries:

bcpg-jdk15on-1.56.0-AXWAY-5.jar
bcpkix-jdk15on-1.56.jar
bcprov-bouncycastle-146.jar
bcprov-jdk15on-1.56.jar

You can try manual steps that can help to resolve it without B2BI reinstall: change the license to non-FIPS license, and fix up the libraries. The details:

1. Use FIPS disabled license

2. Modify Interchange/conf/crossworks.properties:
fips.mode=false
fips.init.class=com.cyclonecommerce.crossworks.EntrustInitializer

3. Remove these libraries from Interchange/corelib:
bc-fips-1.0.1.jar
bcpg-fips-1.0.3.jar
bcpkix-fips-1.0.3.jar
All entrust jars (entXXX.jar)

4. Copy these files into Interchange/corelib (you may need to get them from another installation):
iaik_jce_full-5.61.jar
bcpg-jdk15on-1.56.0-AXWAY-5.jar
bcpkix-jdk15on-1.56.jar
bcprov-bouncycastle-146.jar
bcprov-jdk15on-1.56.jar

5. In the response file from the original installation (.install4j/response.varfile), make this change:
InterchangeIsFipsBoolean = false