SAS Smarts NCM: GUI doesn't log in after installation or upgrade to NCM 9.4; javax.net.ssl.SSLHandshakeException: Error messages powerup.log: Remote host closed connection during handshake
search cancel

SAS Smarts NCM: GUI doesn't log in after installation or upgrade to NCM 9.4; javax.net.ssl.SSLHandshakeException: Error messages powerup.log: Remote host closed connection during handshake

book

Article ID: 330926

calendar_today

Updated On:

Products

VMware Smart Assurance

Issue/Introduction

Symptoms:


User unable to access Smarts NCM via GUI console

Can't log into NCM GUI after upgrading or installing NCM 9.4.

Will get the following error messages powerup.log.
 

EXCEPTION from JAVA

javax.net.ssl.SSLHandshakeException: Remote host closed connection during handshake

at sun.security.ssl.SSLSocketImpl.readRecord(Unknown Source)
 

Caused by: java.io.EOFException: SSL peer shut down incorrectly

at sun.security.ssl.InputRecord.read(Unknown Source)


Environment

VMware Smart Assurance - NCM

Cause

SSLv3 has some vulnerabilities and should be unchecked on the client computer trying to access NCM GUI.

Resolution

Complete the following directions to disable or turn off SSLv3
  • Log on to the client machine. 
  • Open control panel > java. 
  • Click the Advanced tab
  •  Under Advanced security settings:
    • Uncheck the SSLV3 box.
    • Check the TLSv1, TLSv1.1 and TLSv1.2 boxes
  • Open the browser and perform the following steps.
  • On Internet Explorer:
    • From the Start menu, open Internet Options.
    • Click the Advanced tab.
    • Uncheck Use SSL 3.0. d. Click OK. 
  • On Chrome
    • Open the Windows registry editor.
    • In the HKEY_CLASSES_ROOT for chrome, edit the ChromeHTML/shell/open/command registry and change to C:\Program Files\Google\Chrome\Application\chrome.exe" --ssl-version-min=tls1 -- "%1"
    • Make sure that the path to chrome.exe in the previous substep is correct for your system.
  • On Mozilla Firefox version 34
    • SSLV3 is disabled by default.
  • On Mozilla Firefox versions other than 34
    • Type about:config in the address bar and press Enter.
    • Set the value of security.tls.version.min to 1.