Unable to ignite cryptographic keys
search cancel

Unable to ignite cryptographic keys


Article ID: 241742


Updated On:


Data Loss Prevention Enforce Data Loss Prevention


Unable to access Enforce Login and Symantec DLP Incident Persister Service and Symantec DLP Detection Server Controller Service will not start.


Tomcat localhost log shows errors:

SEVERE [com.vontu.config.enforce.EnforceSpringConfiguration] Exception accessing Enforce KeyStore at location [file path to location of keystore]/enforce_keystore.jks
com.vontu.security.KeyStorehouseException: Unable to ignite cryptographic keys.com.vontu.security.KeyStorehouseException: Unable to ignite cryptographic keys.

Caused by: java.io.IOException: Keystore was tampered with, or password was incorrect

Caused by: java.security.UnrecoverableKeyException: Password verification failed
 at sun.security.provider.JavaKeyStore.engineLoad(JavaKeyStore.java:783)
 ... 166 more

java.security.UnrecoverableKeyException: Password verification failedjava.security.UnrecoverableKeyException: Password verification failed


Remove the enforce_keystore.jks file from the keystore directory, restart the Symantec DLP Manager service.  The file will be recreated.

Verify you are able to access the login screen, and restart the Symantec DLP Incident Persister service and Symantec DLP Detection Server Controller service.

Login to the Enforce console and make sure you are able to access incidents and snapshot data is legible.