The Bouncy Castle library installed for WebLogic is conflicting with the Bouncy Castle library used by Advanced Authentication
search cancel

The Bouncy Castle library installed for WebLogic is conflicting with the Bouncy Castle library used by Advanced Authentication

book

Article ID: 366703

calendar_today

Updated On:

Products

CA Strong Authentication CA Advanced Authentication CA Advanced Authentication - Risk Authentication (RiskMinder / RiskFort) CA Advanced Authentication - Strong Authentication (AuthMinder / WebFort)

Issue/Introduction

After deploying the Bouncy Castle patch for Oracle's WebLogic to address security vulnerabilities, the Advanced Authentication Bouncy Castle library was inadvertently overwritten. Subsequently, the Admin UI began displaying the following error:

tried to access method org.bouncycastle.asn1.DERNull.<init>()V from class com.arcot.webfort.issuance.api.impl.credInputASNBridge

Environment

Advanced Authentication 9.1 SP2

Cause

WebLogic Jul 2023 PatchSet (internal codename 12.2.1.4.230702.a)

Base version WebLogic 12.2.1.4: https://download.oracle.com/otn/nt/middleware/12c/122140/fmw_12.2.1.4.0_wls_lite_Disk1_1of1.zip 

Patch ID: 25295839 : “WLS PATCH SET UPDATE 12.2.1.4.230702”
Patch ID: 24558359 : “JDBC 19.3.0.0 FOR CPUJAN2022 (WLS 12.2.1.4, WLS 14.1.1)”
Patch ID: 25231248 : “RDA release 23.3-20230718 for OFM 12.2.1.4 SPB”
Patch ID: 25292306 : “FMW Thirdparty Bundle Patch 12.2.1.4.230628”
Patch ID: 25286419 : “Coherence Cumulative Patch 12.2.1.4.18”
Patch ID: 25312444 : “One-off”
Patch ID: 24325771 : “One-off”

Resolution

To address this issue, we have taken the necessary steps in Hotfix. This resolution should effectively resolve the conflict and ensure the smooth functioning of your system. You can find it attached in this article. 

Please proceed with applying the new patch to your system. If you encounter any further difficulties or require additional assistance, please don't hesitate to reach out through our support portal at https://support.broadcom.com

Attachments

Symantec-AdvAuth-9.1.02-DE588835-HotFix-2.zip get_app