Symptoms:
com.vmware.o11n.plugin.rest.Request - Cannot execute the request
org.bouncycastle.tls.TlsFatalAlert: insufficient_security(71)
at org.bouncycastle.tls.TlsDHUtils.receiveDHConfig(TlsDHUtils.java:139) ~[bctls-fips-1.0.13.jar:1.0.13]
at org.bouncycastle.tls.TlsDHEKeyExchange.processServerKeyExchange(TlsDHEKeyExchange.java:95) ~[bctls-fips-1.0.13.jar:1.0.13]
The issue arises because the external server to which the Orchestrator is trying to establish connection with does not support ciphers that are secure enough with the FIPS enabled Orchestrator ciphers.{*}
To resolve the issue either use the Orchestrator in non-FIPS mode or make your server support FIPS compliant ciphers.
The Orchestrator appliance leverages bouncycastle and the supported ciphers with FIPS enabled are listed on page 26 of the following document.