How to solve the "Reset Deny Session Certificate Store" message when loading PAM

book

Article ID: 198527

calendar_today

Updated On:

Products

CA Privileged Access Manager (PAM)

Issue/Introduction

While connecting to CA PAM by using Internet Explorer 11.X with java logging enabled, customers are getting

"Reset Deny Session Certificate Store"

in their java logs while awaiting the Access Interface to load. 

The JRE  version deployed in the client machine from which the connection is done is  32-bit only.  




Cause

This is not specifically a CA PAM but a java issue which can be corrected by modifying some Java Control Panel parameters related to the runtime environment.

Environment

Privileged Access Management releases 3.3.X and 3.4.X

Resolution

In the java tab view, in the Java Control panel, add the following command in the Runtime Parameters column

-Djava.net.preferIP

v4Stack=true.

Attachments