Advanced Authentication Admin console does not install and logs show a secure connection (SSL) issues when connecting to SQL server
search cancel

Advanced Authentication Admin console does not install and logs show a secure connection (SSL) issues when connecting to SQL server

book

Article ID: 203819

calendar_today

Updated On:

Products

CA Advanced Authentication - Strong Authentication (AuthMinder / WebFort) CA Strong Authentication CA Rapid App Security CA Risk Authentication CA Advanced Authentication

Issue/Introduction

AA Admin console cannot connect to MSSQL database due to SSL issues (where no SSL set up is called for). The error in the arcotadmin.log is as follows:

2022-09-07 13:38:21,223 CDT : [main] : ERROR : cache.db.CacheRefreshService : Internal error: Unable to read cache refresh state table
org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (The driver could not establish a secure connection to SQL Server by using Secure Sockets Layer (SSL) encryption. Error: "PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target". ClientConnectionId:cffe1146-6b54-4c4a-8e65-8971e2581f66)
 at org.apache.commons.dbcp.BasicDataSource.createPoolableConnectionFactory(BasicDataSource.java:1549) ~[commons-dbcp-1.3.jar:1.3]

 

Environment

Release : All Releases

Component : AuthMinder(Arcot WebFort) Strong Authentication

Risk Authentication

Admin Console

Cause

Incorrect SQL JDBC Jar file has been applied (in <APPLICATION_SERVER_HOME>/lib) for the application server that was used to deploy arcotadmin.war.  

Resolution

Download the applicable SQL JDBC jar file (related to your MSSQL DB version)

Apply the SQL JDBC jar file downloaded in #1 above to  say <ApplicationServer_Home>/lib. Restart the Application server.

This is strictly an example as your Application Server of choice could be different. So, for example if:

If one had deployed arcotadmin.war in a Tomcat Application Server.

And the MSSQL DB version that arcotadmin was to connect to was MSSQL DB 2016.

Then, one would need download mssql-jdbc-8.4.1.jar fie related to MSSQL DB 2016 and apply that jar to <TOMCAT_Home>/lib

Restart the Tomcat server. 

The above steps should resolve the connectivity issue to the MSSQL DB (the SSL errors encountered before should disappear) 

Additional Information

https://stackoverflow.com/questions/32766114/sql-server-jdbc-error-on-java-8-the-driver-could-not-establish-a-secure-connect