SSO issue when logging in after install to 3.7.7

book

Article ID: 142941

calendar_today

Updated On:

Products

CA Infrastructure Management CA Performance Management - Usage and Administration CA Performance Management - Data Polling DX NetOps

Issue/Introduction

Receiving the below 500 server error when trying to access CAPC after upgrading

 

Environment

Release : 3.7

Component : CA Performance Center

Resolution

The HTTPS self signed certificate was not in the Java cacerts keystore as per:

https://techdocs.broadcom.com/content/broadcom/techdocs/us/en/ca-enterprise-software/it-operations-management/performance-management/3-7/administrating/single-sign-on/set-up-https/enable-performance-center-to-use-ssl-manually/set-up-ssl-certificates-for-performance-center.html#concept.dita_ad42a47a73393088c290ef371b66ad700f7726d3_GenerateandImportaCertificate

Step 5 and 6.

Once we added it and restarted SSO, DM and Console services, they all came online successfully.

Additional Information

Error messages along the lines of the one below can also be seen in the SSOService.log:

 

     | /sso/saml2/login javax.net.ssl.SSLHandshakeException: SSLHandshakeException invoking https://127.0.0.1:443/pc/center/webservice/sso?WSDL: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target