Agent fails to startup with error "Could not generate DH keypair"
book
Article ID: 98032
calendar_today
Updated On:
Products
CA Automic Applications Manager (AM)
Issue/Introduction
When starting up a new or existing remote agent, the awapi will fail to start, and the following error may be found in the AgentService*.log file:
ErrorMsg: AwE-5103 network socket error (01/01/2018 10:00 AM) Details: Network socket error javax.net.ssl.SSLException: java.lang.RuntimeException: Could not generate DH keypair
Environment
Release: Component: APPMGR
Cause
The key to this error message is: "Could not generate DH keypair".
This error normally occurs when the Java on the Automation Engine is updated to a newer release or if Java on the Agent is upgraded to a newer release.
Later versions of Java restrict DH keys less than 1024 bits. If Java on the Automation Engine (server) or remote agent (client) is running a newer version while the other is running an older version, the older version of Java is attempting to us a DH key less then 1024 bits while the newer version of Java is restricting the use of less then 1024 bits.
Resolution
To resolve this error, please match the version of Java that is used by the Automation Engine and Agent.