Monitoring HTTPS Sites Fail with "unrecognized

Monitoring HTTPS Sites Fail with "unrecognized_name" Exception

Article Id: 40574

Status: Published

Updated On: 14-02-2018 07:45

Legacy Id: TEC1193848

Products:

CA Server Automation CA Virtual Assurance for IM CA Virtual Assurance for IM

Issue/Introduction:

Problem

HTTPS tests fail with the following message in the jcollector.log:

javax.net.ssl.SSLProtocolException: handshake alert: unrecognized_name

Environment

Supported SRM 5.9 platforms monitoring an HTTPS URL.

Cause

Java 7 has certain security enhancements called "Server Name Indication" (SNI). The client (in this case the SRM AIM) must receive a matching hostname from the web server (or virtual web host). If not, Java will not make the connection and throw the SSLProtocolException as noted above.

Resolution

Ensure that the target Web Server is configured properly. This will differ based on each environment. However, Apache HTTPD would likely require updates to ServerAlias and/or ServerName within the appropriate *.conf file(s).

Additional Information

Java 7 Security Enhancements including "Server Name Indication" (SNI)

Environment:

Release: SYSEDG99000-12.9-Stand Alone SystemEDGE Agent
Component: