RDP failed with SSL connection error internal_error(80) when using a custom RDP server certificate
search cancel

RDP failed with SSL connection error internal_error(80) when using a custom RDP server certificate

book

Article ID: 390687

calendar_today

Updated On: 03-12-2025

Products

CA Privileged Access Manager (PAM)

Issue/Introduction

After upgrading to PAM 4.2, RDP to Windows 2022 failed with the following error
   SSL connection error. Reason: internal_error(80)

When the Applet Log Level set to Debug, PAM Client logs.log shows

2025-03-11 16:28:47 INFO  - Certificate unknown     syserr.write [PAM Access Agent-14]
2025-03-11 16:28:47 INFO  -      syserr.write [PAM Access Agent-14]
2025-03-11 16:28:47 INFO  - show message <html><h4><b>The identity of the remote computer can not be verified. Do <br> you want to connect anyway?</h4></b>The remote computer could not be authenticated due to problems with its <br> security certificate. It may be unsafe to proceed.<br> <br><font color='blue'> Certificate info: </font><br>&nbsp <b>Server name: </b>xxxx.xxxx.xxxx.xxxx<br> &nbsp <b>Issuer: </b>xxxx.xxxx.xxxx.xxxx<br> &nbsp <b>Validation period: </b>From 2025/01/14  To 2025/07/16<br><br><font color='blue'> Certificate errors </font> <br>The following errors were encountered while validating the remote <br> computer`s certificate:<br><br> &nbsp &nbsp The certificate is not from a trusted certifying authority.</html> 
 
     com.ca.xsuite.app.rdp3.core.common.gui.handler.ShowMessageOrderHandler.info [PAM Access Agent-14]
2025-03-11 16:28:48 INFO  - org.bouncycastle.tls.TlsFatalAlert: internal_error(80)     syserr.write [PAM Access Agent-14]
2025-03-11 16:28:48 INFO  -      syserr.write [PAM Access Agent-14]
 <... cut ...>
2025-03-11 16:28:48 INFO  -     at java.base/java.lang.Thread.run(Unknown Source)     syserr.write [PAM Access Agent-14]
2025-03-11 16:28:48 INFO  -      syserr.write [PAM Access Agent-14]
2025-03-11 16:28:48 INFO  - Caused by: java.security.NoSuchAlgorithmException: SHA256WITHRSAANDMGF1 Signature not available     syserr.write [PAM Access Agent-14]
2025-03-11 16:28:48 INFO  -      syserr.write [PAM Access Agent-14]
2025-03-11 16:28:48 INFO  -     at java.base/java.security.Signature.getInstance(Unknown Source)     syserr.write [PAM Access Agent-14]
2025-03-11 16:28:48 INFO  -      syserr.write [PAM Access Agent-14]
 <... cut ...>
2025-03-11 16:28:48 INFO  -     ... 22 more     syserr.write [PAM Access Agent-14]
2025-03-11 16:28:48 INFO  -      syserr.write [PAM Access Agent-14]
2025-03-11 16:28:48 ERROR - org.bouncycastle.tls.TlsFatalAlert: internal_error(80)     com.ca.xsuite.app.rdp3.client.handler.ClientTLSStreamHandler.error [PAM Access Agent-14]
2025-03-11 16:28:48 ERROR - Application Error raised during connection process or inside main loop. SSL connection error. Reason: internal_error(80)      com.ca.xsuite.app.rdp3.client.app.RDesktop.error [PAM Access Agent-14]
2025-03-11 16:28:48 ERROR -      com.ca.xsuite.app.rdp3.client.app.RDesktop.error [PAM Access Agent-14]
com.ca.xsuite.app.rdp3.core.exception.RdpException: SSL connection error. Reason: internal_error(80)

 

Environment

Privilege Access Manager 4.2, Windows Server 2022

Cause

This is a known issue that is fixed in PAM 4.2.1 onward

Resolution

Upgrade to PAM 4.2.1 or later to resolve this problem.

Additional Information

See Resolved Issues in 4.2.1

5954391 - DE622318 - An inconsistent SSL connection error internal_error_80 appears when using a custom RDP server certificate.