search cancel

RHEL 8 servers failing to connect to the Data Center Security Server Manager (DCS) with Generic SSL error

book

Article ID: 238509

calendar_today

Updated On:

Products

Data Center Security Server Advanced

Issue/Introduction

All of the RHEL8 installs are failing with the following message:

Testing connection to server xxx.xxx.xxx.xxxx
Could not connect to server: CURLE_SSL_CONNECT_ERROR. Generic SSL connection error.

Upon trace logging the connection is failing the TSL handshake:

Informational text : 
TLSv1.3 (IN), TLS alert, handshake failure (552):

Server has sent SSL/TLS (binary) data : 
!! SKIPPING BINARY DATA WHILE PRINTING !!

Informational text : 
error:14094410:SSL routines:ssl3_read_bytes:sslv3 alert handshake failure

Cause

RHEL 8 Servers have updated the ciphers and discontinued ciphers are needed for Agent to Manager communication

Environment

Release : 6.9.1 +

Resolution

Update the RHEL 8 ciphers back to legacy ciphers

update-crypto-policies --set LEGACY

https://access.redhat.com/articles/3642912