CA API Gateway 8.x Policy Manager fails to connect after changing TLS 1.1 1.2

book

Article ID: 107618

calendar_today

Updated On:

Products

CA API Gateway (Layer 7) SA94 to API SECURITY STARTER PACK-7 CA Rapid App Security MOBILE API GATEWAY CA Mobile - API Gateway CA API Gateway

Issue/Introduction

After Modification of a listen port for tls 1.1 / 1.2 only Policy Manager will no longer connect.It receives a fatal handshake failure. 

Environment

Release:
Component: APIGTW

Resolution

In Early versions of API Gateway 8.x the policy manager ini may need to be updated with the below. In 9.x this is not required.

If your not sure where it is right click on your policy manager goto properties see where the link is installed. 

Update the Policy Manager, 

Policy Manager.ini 

[startup] 
jre=jre\bin\javaw.exe 
commandline=javaw -Dfile.encoding=UTF-8 -Duser.language=en -Duser.country=US -Xms128M -Xmx256M -Xss256k -Dsun.net.inetaddr.ttl=10 -Dnetworkaddress.cache.ttl=10 -Dhttps.protocols=TLSv1.2 -jar Manager.jar