Error: Could not initialize class smcrypto.SmCryptoFacade
search cancel

Error: Could not initialize class smcrypto.SmCryptoFacade


Article ID: 272704


Updated On:


SITEMINDER CA Single Sign On Federation (SiteMinder) CA Single Sign On Secure Proxy Server (SiteMinder)



Running Policy Server, the SAML federation journey fails. The Policy Server reports error:

[07/26/2023][13:42:34.103][13:42:34][1704163][139861449242368][TunnelUtils][addProviderPasswords][][][][][][][][][][][][][][][][][][][][][Exception while attempting to retrieve passwords:
java.lang.NoClassDefFoundError: Could not initialize class

This causes the Federation Service to report error:

[07/26/2023][13:42:34][17293][140431700854528][][][processRequest][Transaction with ID: xx-xxx-xx-xxx-xx failed. Reason: NO_PROVIDER_INFO_FOUND]
[07/26/2023][13:42:34][17293][140431700854528][][][processRequest][No SAML2 provider information found for SP mySP.]
[07/26/2023][13:42:34][17293][140431700854528][][][processRequest][Ending SAML2 Single Sign-On Service request processing with HTTP error 400]
[07/26/2023][13:42:34][17293][140431700854528][][][redirectToErrorPage][Sending HTTP Error 403 ]




  Policy Server 12.8SP7 on RedHat 8;
   JDK 11;
  Policy Store with 12.7 objects;
  CA Access Gateway (SPS);




The Policy Server JVM is customized and there are missing out of the box configuration.

As per the documentation, port manually the customization, keeping the out of the box configuration (1).

As per best practices, recompile the custom code which uses the same libraries that are given by the out of the box JVMOptions.txt.

Then, introduce the custom applications 1 by 1 in the JVMOptions.txt, validating that each of them runs correctly with the upgraded Policy Server.




The library:

was missing from the Policy Server installation folder.

Installing the library back solved the issue.


Additional Information



    Take a Backup JVMOptions.txt