Bad security handshake attempt. Handshake error: 3159 in Policy Server
search cancel

Bad security handshake attempt. Handshake error: 3159 in Policy Server

book

Article ID: 267882

calendar_today

Updated On:

Products

SITEMINDER CA Single Sign On Agents (SiteMinder) CA Single Sign On Federation (SiteMinder) CA Single Sign On Secure Proxy Server (SiteMinder)

Issue/Introduction

 

During the execution of Policy Server, it reports an error:

   [2171/140369027118848][Thu May 18 2023 01:57:30][CServer.cpp:2121][ERROR][sm-Tunnel-00010] Bad security handshake attempt. Handshake error: 3159
   [2171/140369027118848][Thu May 18 2023 01:57:30][CServer.cpp:2126][ERROR][sm-Tunnel-00020] Handshake error: Failed to receive client hello. Client disconnected
   [2171/140369027118848][Thu May 18 2023 01:57:30][CServer.cpp:2293][ERROR][sm-Server-01070] Failed handshake with 192.0.2.1:51740

 

Resolution

 

 

At first glance, the problem is likely to be caused by:

  1. Network latency, or encryption failure that requires re-registration of the host.

    Possible handshake errors in Policy Server smps.log explanations

    The solution is to re-register the host and set the AgentWaitTime setting in webagent.conf, as well as the keep-alive environment variable.

  2. A monitoring tool that pools the Policy Server ports and disconnects.



Powered by Wolken Software