EDR: SSL: EE_KEY_TOO_SMALL on Threat Intel

search cancel

EDR: SSL: EE_KEY_TOO_SMALL on Threat Intel

book

Article ID: 287973

calendar_today

Updated On:

Products

Carbon Black EDR (formerly Cb Response)

Issue/Introduction

The following message is see in the /var/log/cb/enterprise/enterprise.log

HTTPSConnectionPool(host='threatintel.bit9.com', port=443): Max retries exceeded with url: /api/v1/cbfeed/feed/attackframed by SSLError(SSLError(336245135, u'[SSL: EE_KEY_TOO_SMALL] ee key too small (_ssl.c:2815)'),))

Environment

EDR Server: All Versions

Cause

Seclevel does not allow the supported hash algorithm for the alliance certificate

Resolution

Please reach out to support to create a newly generated rpm package with the updated Alliance certificate with Sha256 hashing.

Feedback

thumb_up Yes

thumb_down No