CA SSO team is now posting Oracle Java patches to the CA SSO Patch (CR) download site.
CA Single Sign-On Hotfix/Cumulative Release Index - CA Technologies
There is a document with these patches that reinforces that these patches are only to be used with CA SSO. Once you navigate to the patch site the patches are available at the "Oracle Java Non-Public Patch Updates" link.
Is the last comment stating that CA SSO customers will be able to obtain JDK patches from Broadcom directly at no extra cost? Thanks!
I have confirmed that I will be able to post Oracle JDK patches for Java 1.8 for use within the CA SSO application (only) by CA SSO customers. The logistics of the posting of these patches is being rebuilt within the Broadcom systems. I will update this space as soon as that is complete. It should be completed this month.
Thank you . Getting asked by management so will let them know something should be coming along.
Hi. I am working on the logistics of what/how we will be able to offer on Java 1.8 patches. I will target an update to this space by Jan 8.
Any new update here? Commercial Users updates for Java 8 is set to end January 2019 I believe and haven't seen confirmation on what CA customers are supposed to do when we start getting dinged by security. Really deserves a stick on the main CA SSO content page for "Here's what you need to know about Java upgrades".
The only Java patches I see at the cumulative release site were the old Java 1.7 ones CA provided.
The alternate proposed by you - CA SSO could potentially bundle Oracle JDK will also work for me. Do we already have a planned date for next version of CA SSO?
Would this approach be a possible solution?
Instead of supporting OpenJDK, CA SSO could potentially bundle Oracle JDK and then potentially provide all ongoing Oracle JDK fixes to CA SSO customers for use with CA SSO and CA SSO customers would not need to pay for Oracle JDK fixes. That would address the Oracle JDK cost issue (for you) and ensure CA support team would have known quantity (Oracle JDK) and known cadence of fixes issued by Oracle.
Per this note:
we are going to review vote totals for enhancement items at end of Nov. and this one is high on the list today:
I have one more customer request for certified openJDK support for SSO.
Surprisingly CA internal also have this idea. Oracle's move greatly discourages use of their version of Java and makes it unsecured without continuous support and security enhancements.
We are looking at openJDK as the Enterprise JDK going forward. So when can we expect CA to support openJDK for CA SSO components?
I have one more customer request for certified openJDK support for SSO
Thank you for your contribution of an enhancement idea to the CA Community. CA is continually working to improve its software and services to best meet the needs of its customers. Your input is vital to that effort. The CA Single Sign-On Product Management team is reviewing your enhancement suggestion following the process outlined here: https://communities.ca.com/docs/DOC-231170123
The Community will continue to be able to vote on this enhancement idea.
Since the OracleJDK has now a highly cost of support to the client and OpenJDK came with Red Hat and is supported by Red Hat. The idea is validate and add OpenJDK to our compatibility matrix. Today we have no option as we have for database.