4. Save and exit the file. 5. Restart the Gateway.
Cause
The error dialog box is a generic failure message when communicating to the policy server in this particular case port 44442 (Default for smreghost) was blocked
The network conversation between the APIM GW IP:xxx.xxx.xxx.xxx:44442 to SSO Policy server yyy.yyy.yyy.yyy:44442 - is not able to be established on port 44442 RST
Gateway 9.4 SSO Policy Server 12.51 Sp1 FIPS mod (mode or version does not matter)
Resolution
When registering the "CA Single Sign-On Registration Properties" you can explicitly specify the port number used by the policy server
In this case only port 44441 was used - see below
NOTE after registration complete you may need to make changes to the following parameters server.0.0.accounting.port server.0.0.authentication.port server.0.0.authorization.port