After manually upgrading our ARD Hub on Linux, we are not able to see any projects in ARD Hub 3.4. After logging into ARD Hub with the default Admin account, a 401 - Unathorized error is thrown when attempting to load the projects.

ARD Hub 3.4 on Linux

During the upgrade of the Java JDK17, the customer forgot to make a backup of their JDK11_HOME/lib/security/cacerts file that contains the LDAPS certificate, and causing the 401 error - Not authorized error when trying to load the projects.

While troubleshooting the ARD Hub upgrade, and looking through the ARD Hub logs (flowstorage.log) it was discovered that Tomcat Flowstorage had SSL enabled, indicated by the error - "keycloak.ssl-required=external".

To resolve this issue, disable SSL by modifying the tomcat/webapps - ard#flowstorage/application.property file, and set keycloak.ssl-required=none. This will require a restart of the ARD Tomcat service.

After making this change, it was found that LDAP users were still seeing a 400 error when attempting to authenticate. To resolve this, copy the referenced cacerts file from the older jdk11 to the newer jdk17 version, and restart the ARD Tomcat service.