Software Gw Install Fails with Exception in thread "main" java.lang.RuntimeException: Unable to encrypt password: PBKDF2WithHmacSHA1 SecretKeyFactory not available
search cancel

Software Gw Install Fails with Exception in thread "main" java.lang.RuntimeException: Unable to encrypt password: PBKDF2WithHmacSHA1 SecretKeyFactory not available

book

Article ID: 368523

calendar_today

Updated On:

Products

CA API Gateway

Issue/Introduction

While trying to install and configure a software gateway, the following error was observed:

Exception in thread "main" java.lang.RuntimeException: Unable to encrypt password: PBKDF2WithHmacSHA1 SecretKeyFactory not available
  at com.l7tech.util.L7C2SecretEncryptor.encryptPassword
...
caused by: java.security.NoSuchAlgorithm.Exception: PBKDF2WithHmacSHA1 SecretKeyFactory not available
  at java.base/javax.crypto.SecretKeyFactory.<init>(SecretKeyFactory.java:122)

The gateway is using the embedded database, FIPs is enabled, and the default Java version is being used.

Is PBKDF2WithHmacSHA1 FIPs approved?

Environment

API Gateway: 11.0 CR02
FIPS: SunPKCS11  / SUN / SUNEC / SunPKCS11-NSS-FIPS
Java: OpenJDK 11.0.23
OS: RHEL 8.9

Cause

This error occurs when the java.security file has the security.useSystemPropertiesFile parameter set to true with Red_Hat JDK 11.0.19.

Resolution

Change the security.useSystemPropertiesFile parameter and set it to false. 

 

Additional Information

A gateway running with JDK Temurin-11.0.18 or Temurin-11.0.19 will not have this issue.

Powered by Wolken Software