After upgrading to PAM 4.2, RDP to Windows 2022 failed with the following error
SSL connection error. Reason: internal_error(80)
When the Applet Log Level set to Debug, PAM Client logs.log shows
2025-03-11 16:28:47 INFO - Certificate unknown syserr.write [PAM Access Agent-14]
2025-03-11 16:28:47 INFO - syserr.write [PAM Access Agent-14]
2025-03-11 16:28:47 INFO - show message <html><h4><b>The identity of the remote computer can not be verified. Do <br> you want to connect anyway?</h4></b>The remote computer could not be authenticated due to problems with its <br> security certificate. It may be unsafe to proceed.<br> <br><font color='blue'> Certificate info: </font><br>  <b>Server name: </b>xxxx.xxxx.xxxx.xxxx<br>   <b>Issuer: </b>xxxx.xxxx.xxxx.xxxx<br>   <b>Validation period: </b>From 2025/01/14 To 2025/07/16<br><br><font color='blue'> Certificate errors </font> <br>The following errors were encountered while validating the remote <br> computer`s certificate:<br><br>     The certificate is not from a trusted certifying authority.</html>
com.ca.xsuite.app.rdp3.core.common.gui.handler.ShowMessageOrderHandler.info [PAM Access Agent-14]
2025-03-11 16:28:48 INFO - org.bouncycastle.tls.TlsFatalAlert: internal_error(80) syserr.write [PAM Access Agent-14]
2025-03-11 16:28:48 INFO - syserr.write [PAM Access Agent-14]
<... cut ...>
2025-03-11 16:28:48 INFO - at java.base/java.lang.Thread.run(Unknown Source) syserr.write [PAM Access Agent-14]
2025-03-11 16:28:48 INFO - syserr.write [PAM Access Agent-14]
2025-03-11 16:28:48 INFO - Caused by: java.security.NoSuchAlgorithmException: SHA256WITHRSAANDMGF1 Signature not available syserr.write [PAM Access Agent-14]
2025-03-11 16:28:48 INFO - syserr.write [PAM Access Agent-14]
2025-03-11 16:28:48 INFO - at java.base/java.security.Signature.getInstance(Unknown Source) syserr.write [PAM Access Agent-14]
2025-03-11 16:28:48 INFO - syserr.write [PAM Access Agent-14]
<... cut ...>
2025-03-11 16:28:48 INFO - ... 22 more syserr.write [PAM Access Agent-14]
2025-03-11 16:28:48 INFO - syserr.write [PAM Access Agent-14]
2025-03-11 16:28:48 ERROR - org.bouncycastle.tls.TlsFatalAlert: internal_error(80) com.ca.xsuite.app.rdp3.client.handler.ClientTLSStreamHandler.error [PAM Access Agent-14]
2025-03-11 16:28:48 ERROR - Application Error raised during connection process or inside main loop. SSL connection error. Reason: internal_error(80) com.ca.xsuite.app.rdp3.client.app.RDesktop.error [PAM Access Agent-14]
2025-03-11 16:28:48 ERROR - com.ca.xsuite.app.rdp3.client.app.RDesktop.error [PAM Access Agent-14]
com.ca.xsuite.app.rdp3.core.exception.RdpException: SSL connection error. Reason: internal_error(80)
Privilege Access Manager 4.2, Windows Server 2022
This is a known issue that is fixed in PAM 4.2.1 onward
Upgrade to PAM 4.2.1 or later to resolve this problem.
5954391 - DE622318 - An inconsistent SSL connection error internal_error_80 appears when using a custom RDP server certificate.