Symantec Access Management

  • Private Community

  • 1.  Issues while Using SM Agent API from JBOSS 6.4

    Posted Jan 26, 2016 05:15 PM

    I have a working  standalone SM Agent API Java code. I am trying to add it as a webapp and test in JBOSS i am seeing following error. 

     

    jboss error:

    retcode:-1

    22:03:19,519 INFO  [com.ally.enterprise.idmapi.service.business.impl.JavaTestClient] (http-/127.0.0.1:4050-1) FATAL: Failed trying to connect to the Policy Server. Ensure that the Agent Name and Shared Secret in smjsdkexample.properties matches that of a pre-existing agent in the Policy Store.

     

    smps.log

    [10788/1372][Tue Jan 26 2016 22:03:19][CServer.cpp:1965][ERROR][sm-Tunnel-00010] Bad security handshake attempt. Handshake error: 3156

    [10788/1372][Tue Jan 26 2016 22:03:19][CServer.cpp:1980][ERROR][sm-Tunnel-00070] Handshake error: Failed to receive client ack. Socket error 0

    [10788/1372][Tue Jan 26 2016 22:03:19][CServer.cpp:2137][ERROR][sm-Server-01070] Failed handshake with 127.0.0.1:60807

     

     

    I have added a  module   with following file and contents in JBOSS  (\jboss-eap-6.4\modules)

    <?xml version="1.0" encoding="UTF-8"?>

    <module xmlns="urn:jboss:module:1.1" name="com.rsa">

        <properties>

        </properties>

        <resources>

      <resource-root path="cryptoj.jar"/>

    <resource-root path="US_export_policy.jar"/>

      <resource-root path="local_policy.jar"/>

         </resources>

        <dependencies>

      <system export="true">

      <paths>

      <path name="javax/crypto"/>

      <path name="sun/security"/>

      <path name="com/sun"/>

      </paths>

      </system>

        </dependencies>

    </module>

     

    webapp is not working in JBOSS but working in weblogic. 

     

    Thanks,

    Maruti



  • 2.  Re: Issues while Using SM Agent API from JBOSS 6.4

    Posted Jan 26, 2016 05:56 PM

    Hi Maruti,

     

    This is happening most likely because your JRE is not patched with the JCE policy files.

    Have a look at this KB, this should help you get through this error :

     

    http://www.ca.com/us/support/ca-support-online/product-content/knowledgebase-articles/tec1069845.aspx?intcmp=searchresul…

     

    Regards,

    Ujwol



  • 3.  Re: Issues while Using SM Agent API from JBOSS 6.4

    Posted Jan 27, 2016 10:18 AM

    Thanks Ujwol,

    The error is in client JBOSS , not from CA SM JBOSS.

    Standalone Eclipse and Client JBOSS server is using same JRE.  I tried adding policy jars in client JBOSS modules also.



  • 4.  Re: Issues while Using SM Agent API from JBOSS 6.4

    Posted Jan 31, 2016 05:32 PM

    Hi Maruti,

     

    How are you going with this ? Are you still having the issue ?

    Does the jboss serve.log pritns which JRE it is using?

     

    Cheers,

    Ujwol



  • 5.  Re: Issues while Using SM Agent API from JBOSS 6.4

    Posted Mar 01, 2016 08:27 PM

    Its resolved, had issue in my windows JBOSS rt.jar and sun.ssl.net class loading issue. Thanks Ujwol!!