SSO issue when logging in after install to 3.7.7

Article Id: 142941

Status: Published

Updated On: 11-01-2020 19:18

Products:

CA Infrastructure Management , CA Performance Management - Usage and Administration , CA Performance Management - Data Polling , DX NetOps

Issue/Introduction:

Receiving the below 500 server error when trying to access CAPC after upgrading

Environment:

Release : 3.7

Component : CA Performance Center

Resolution:

The HTTPS self signed certificate was not in the Java cacerts keystore as per:

https://techdocs.broadcom.com/content/broadcom/techdocs/us/en/ca-enterprise-software/it-operations-management/performance-management/3-7/administrating/single-sign-on/set-up-https/enable-performance-center-to-use-ssl-manually/set-up-ssl-certificates-for-performance-center.html#concept.dita_ad42a47a73393088c290ef371b66ad700f7726d3_GenerateandImportaCertificate

Step 5 and 6.

Once we added it and restarted SSO, DM and Console services, they all came online successfully.

Additional Information:

Error messages along the lines of the one below can also be seen in the SSOService.log:

| /sso/saml2/login javax.net.ssl.SSLHandshakeException: SSLHandshakeException invoking https://127.0.0.1:443/pc/center/webservice/sso?WSDL: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target