Web Browser Java Plug-in Alternatives

Document ID:7021593
Creation Date:07-Jul-2015
Modified Date:02-Mar-2018
- Micro Focus Products:
  Host Access Management and Security Server (MSS)
  Reflection for the Web

Environment

Host Access Management and Security Server version 12.4
Host Access Management and Security Server version 12.3
Reflection for the Web (All Editions) version 12.3
Reflection for the Web (All Editions) version 12.2

Situation

Google Chrome and Mozilla Firefox (stable release) have discontinued the cross-platform Netscape Plug-in Application Programming Interface (NPAPI), which causes Java plug-ins to be disabled. Java plug-ins are required by Java applets that run in a client browser. When Google Chrome or Mozilla Firefox (stable release) is the selected browser, some Micro Focus products are affected by the NPAPI deprecation.

View Full Size

Figure 1. Google Chrome warning banner: 'This site uses a plugin (Java(TM)) that is unsupported.'

As of this technical note's publication date, other browsers have not formally announced stopping support for Java plug-ins.

Note: Java Web Start applications require JNLP to be enabled in the browser; however, JNLP applications can run outside the browser and do not require a Java plug-in to be enabled.

Resolution

Solution Alternatives

To avoid downtime issues caused by discontinued support for Java plug-ins:

Identify your products that use Java applets or JNLP (Java Web Start) applications that run in or are launched via a browser. See the Products that Currently Use Java Plug-ins.
Identify the browsers that are used with your Attachmate products. Check each browser's site for specific timelines and plans to deprecate NPAPI. For the short term, use or switch to a browser that still supports NPAPI. See Browser-specific Information.
For a longer-term solution, upgrade or migrate to Products that Do Not Require Java Plug-ins.

Products that Currently Use Java Plug-ins

The following versions of Micro Focus products use Java plug-ins and are affected when NPAPI is deprecated.

Reflection for the Web 12.3 or earlier

The Login applet and the Links List applet, used to authenticate users and deploy sessions to authorized users, require a Java plug-in. The terminal emulation and file transfer components are deployed as applets in a browser and require a browser capable of running the Java plug-in.

Alternatively, the terminal emulation and file transfer components can be deployed as desktop applications rather than as applets. This optional feature requires customization.

Host Access Management and Security Server (MSS) 12.4 or earlier

The Login applet and the Links List applet, which are used to authenticate users and deploy sessions to authorized users, require a Java plug-in.

Products that are centrally managed byHost Access Management and Security Server (MSS) 12.4 or earlier

If MSS (or Reflection for the Web) is used to secure and deploy sessions for these products, a Java plug-in is required.

Reflection Desktop products (IBM, VT, or X sessions)
Reflection 2014 products (IBM, VT, or X sessions)
Reflection 14.x products (for IBM, HP, VT, or X sessions)
Reflection X Advantage
Reflection for Secure IT Windows Client
Reflection FTP Client
Extra! X-treme
InfoConnect Enterprise Edition
InfoConnect Desktop
Verastream Host Integrator (Design Tool only)

For more information about Java and Attachmate products, see KB 7021973.

Browser-specific Information

Check your browser's site for specific timelines and other communications about deprecating support for Java plug-ins, specifically NPAPI.

Google Chrome

Effective September 2015 (Chrome 45), NPAPI support has been permanently removed from Chrome. Installed extensions that require NPAPI plug-ins no longer are able to load those plug-ins.

For more information:

NPAPI plug-ins don't work on Chrome version 42 and higher https://support.google.com/chrome/answer/6213033
How do I use Java with the Google Chrome browser? https://java.com/en/download/faq/chrome.xml
The Chromium Projects – NPAPI deprecation: developer guide. Included alternatives to NPAPI. http://www.chromium.org/developers/npapi-deprecation

Microsoft Internet Explorer

Internet Explorer continues to support Java plug-ins. According to Microsoft, Windows 10 (available 29-Jul-2015) includes the option to use Internet Explorer (version 11). Older technologies are no longer supported by the new Microsoft Edge browser available in Windows 10.

For more information:

Mozilla Firefox

As of February 2017, Mozilla plans to drop support for Java or other NPAPI plug-ins in Firefox 52 (stable release) releasing March 7, 2017. Organizations that need to use Mozilla Firefox and Java plug ins can continue to use Mozilla Firefox Extended Support Release (ESR) 45.7 and higher.

Firefox alternatives to plug-ins (technologies available within the browsers):

WebGL, which allows OpenGL ES access
WebRTC

For more information:

Products that Do Not Require Java Plug-ins

For a longer-term solution, consider upgrading or migrating to a Micro Focus product that does not require Java plug-ins. These products and versions will not be affected by the deprecation of NPAPI.

Reflection ZFE – For user sessions, Java is used on the server, not as a plug-in.
Reflection Desktop
Rumba+ Desktop
Host Access Management and Security Server – This is the successor product of Attachmate Reflection Security Gateway (available Q4 2015). The means to authenticate users and deploy sessions to authorized users will no longer require applets or Java plug-ins.
Reflection PKI Services Manager – This optional add-on component uses Java on a server, not as a plug-in.

To find out more about these or other products, contact a sales representative (https://www.attachmate.com/company/contact/).

Additional Information

Legacy KB ID

This document was originally published as Attachmate Technical Note 2797.