Identity Governance Jboss application is not coming up after enabling SSL

book

Article ID: 16125

calendar_today

Updated On:

Products

CA Identity Manager CA Identity Governance CA Identity Portal CA Risk Analytics CA Secure Cloud SaaS - Arcot A-OK (WebFort) CLOUDMINDER ADVANCED AUTHENTICATION CA Secure Cloud SaaS - Advanced Authentication CA Secure Cloud SaaS - Identity Management CA Secure Cloud SaaS - Single Sign On

Issue/Introduction



 After following the docops for enabling SSL the Jboss Application Server still won't boot up. When looking at the eurekify.log file you see the following error.

 

"java.lang.Exception: No Certificate file specified or invalid file format"

 

What can be done to resolve the error?

Environment

Identity Governance 12.6 SP5Jboss

Resolution

To resolve this issue you can need to modify the server.xml from the default configurations. Out of the box configurations state to use this connector procotol.

<Connector protocol="HTTP/1.1" port="8443" SSLEnabled="true"
maxThreads="150" scheme="https" secure="true"
clientAuth="false" sslProtocol="TLS"
keystoreFile="E:\CA\RCM\Server\eurekify-jboss\server\eurekify\conf\server.keystore"
keystorePass="changeit"
/>

To:

<Connector protocol="org.apache.coyote.http11.Http11Protocol" port="8443" SSLEnabled="true"
maxThreads="150" scheme="https" secure="true"
clientAuth="false" sslProtocol="TLS"
keystoreFile="E:\CA\RCM\Server\eurekify-jboss\server\eurekify\conf\server.keystore"
keystorePass="changeit"
/>

 

The reason that this needs to be changed is because the connector was configured for JSSE. So the connector needs to be a non-APR Connector.