search cancel

The server selected protocol version TLS10 is not accepted by client preferences - RU install failure

book

Article ID: 253418

calendar_today

Updated On:

Products

CA Service Desk Manager CA Service Management - Service Desk Manager

Issue/Introduction

RU install fails at the CDB creation steps

Install log contains the following error

INFO  [DeployThread] [DeployThread] task.install_CDB : failed
INFO  [DeployThread] [DeployThread] Abort requested while running task: Configuring CA Service Management common tables 

MDB log contains the following error

ERROR - The driver could not establish a secure connection to SQL Server by using Secure Sockets Layer (SSL) encryption. Error: "The server selected protocol version TLS10 is not accepted by client preferences [TLS13, TLS12]". ClientConnectionId:36da7865-b7b3-40ba-bd4d-0c8d7c1e9882

Environment

CA Service Desk Manager 17.3

All Supported Operating Systems

Resolution

1.  Locate the scripts\CDB\jre\conf\security\java.security file from the location where you extracted the RU installer

2.  Edit the file with a text editor

3.  Locate the following section

jdk.tls.disabledAlgorithms=SSLv3, TLSv1, TLSv1.1, RC4, DES, MD5withRSA, \

    DH keySize < 1024, EC keySize < 224, 3DES_EDE_CBC, anon, NULL, \

    include jdk.disabled.namedCurves

4.  Change to

jdk.tls.disabledAlgorithms=SSLv3, RC4, DES, MD5withRSA, \

    DH keySize < 1024, EC keySize < 224, 3DES_EDE_CBC, anon, NULL, \

    include jdk.disabled.namedCurves

5.  Save changes

6.  Delete the %temp%/casm folder

7.  Re-run the RU installer