Failed client upload for a new "Cloud Web Isolation <> DLP" set up
search cancel

Failed client upload for a new "Cloud Web Isolation <> DLP" set up

book

Article ID: 384033

calendar_today

Updated On:

Products

Web Isolation Cloud Blue Coat DLP Subscription

Issue/Introduction

While integrating Cloud WI tenant with DLP server and creating a new Data Leakage Prevention Server in "Profiles -> Upload Profiles", example:

After setting the needed fields:

  • Certificate File
  • Certificate Passphrase
  • Detector Id
  • Detector URL
  • REST Connector GUID

And setting the newly created Web Isolation upload profile to "Scan" specific file extension objects.

If the Cloud Web Isolation client uploads requests matching the above new profile are not sent to the DLP server for scanning. No requests are reaching the DLP server and if "fail close" is set in the new upload profile the uploads fail.

Web Isolation activity record for the client POST and Web Isolation logs show the following exception, example:

  • External scanning service error: An error has occurred during the scanning, error: {"stack":"Error: mac verify failure\n at Object.createSecureContext (_tls_common.js:272:19)\n at Object.connect (_tls_wrap.js:1606:48)\n at Agent.createConnection (https.js:144:22)\n at Agent.createSocket (_http_agent.js:323:26)\n at Agent.addRequest (_http_agent.js:274:10)\n at new ClientRequest (_http_client.js:305:16)\n at Object.request (https.js:370:10)\n at Request.start (/app/node_modules/fireglass-common-node/node_modules/request/request.js:751:32)\n at Request.write (/app/node_modules/fireglass-common-node/node_modules/request/request.js:1491:10)\n at CombinedStream.ondata (internal/streams/legacy.js:20:31)\n at CombinedStream.emit (events.js:400:28)\n at CombinedStream.emit (domain.js:475:12)\n at CombinedStream.write (/app/node_modules/fireglass-common-node/node_modules/combined-stream/lib/combined_stream.js:119:8)\n at DelayedStream.ondata (internal/streams/legacy.js:20:31)\n at DelayedStream.emit (events.js:400:28)\n at DelayedStream.emit (domain.js:475:12)\n at DelayedStream._handleEmit (/app/node_modules/delayed-stream/lib/delayed_stream.js:82:15)\n at Readable.source.emit (/app/node_modules/delayed-stream/lib/delayed_stream.js:29:19)\n at Readable.read (internal/streams/readable.js:504:10)\n at flow (internal/streams/readable.js:986:34)\n at emitReadable_ (internal/streams/readable.js:569:3)\n at processTicksAndRejections (internal/process/task_queues.js:81:21)","message":"mac verify failure"}

 

 

Cause

The set "Certificate Passphrase" is wrong

Resolution

Ask the DLP support team engineer to reconvert the DLP detector to obtain a new cert and passphrase

Powered by Wolken Software