000029927 - Data feed "Service Connection Failure" in RSA Archer 6.x

Document created by RSA Customer Support Employee on Dec 30, 2019Last modified by RSA Customer Support Employee on Jan 13, 2020
Version 2Show Document
  • Comment0
  • View in full screen mode

Article Content

Article Number000029927
Applies ToRSA Product Set: RSA Archer
RSA Version/Condition: 6.x
IssueData feed faults with a "Service Connection Failure Message"  Please reference the following stack trace:

E2ETraceEvent xmlns="http://schemas.microsoft.com/2004/06/E2ETraceEvent">
    <System xmlns="http://schemas.microsoft.com/2004/06/windows/eventlog/system">
        <EventID>3</EventID>
        <Type>3</Type>
        <SubType Name="Error">0</SubType>
        <Level>2</Level>
        <TimeCreated SystemTime="2015-03-27T04:00:12.2170810Z" />
        <Source Name="ArcherTech.DataFeed" />
        <Correlation ActivityID="{20d55755-5f52-455a-b2a8-636bd8c0754d}" />
        <Execution ProcessName="ArcherTech.JobFramework.Job" ProcessID="5676" ThreadID="1" />
        <AssemblyVersion>5.5.20001.1005</AssemblyVersion>
        <Channel />
        <Computer>XXXXXXXXXXX</Computer>
    </System>
    <ApplicationData>
        <TraceData>
            <DataItem>
                <TraceRecord Severity="Error" xmlns="http://schemas.microsoft.com/2004/10/E2ETraceEvent/TraceRecord">
                    <TraceIdentifier>ArcherTech.DataFeed</TraceIdentifier>
                    <Description>Could not log in to the web service.  This could be due to the uri 'https://XXXXXXXXXX/ws/search.asmx' being invalid or invalid credentials.</Description>
                    <AppDomain>ArcherTech.JobFramework.Job.exe</AppDomain>
                    <ContextData>
                        <LogReferenceId>032715-040012-1690</LogReferenceId>
                        <DataFeedId>1</DataFeedId>
                        <DataFeedName>Security_Operations__Generate_Incident_R</DataFeedName>
                        <DataFeedHistoryId>574</DataFeedHistoryId>
                    </ContextData>
                    <Exception>
                        <ExceptionType>System.ServiceModel.Security.SecurityNegotiationException, System.ServiceModel, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089</ExceptionType>
                        <Message>Could not establish trust relationship for the SSL/TLS secure channel with authority 'XXXXXXXXXXXX'.</Message>
                        <Source>mscorlib</Source>
                        <StackTrace>
Server stack trace:
   at System.ServiceModel.Channels.HttpChannelUtilities.ProcessGetResponseWebException(WebException webException, HttpWebRequest request, HttpAbortReason abortReason)
   at System.ServiceModel.Channels.HttpChannelFactory`1.HttpRequestChannel.HttpChannelRequest.WaitForReply(TimeSpan timeout)
   at System.ServiceModel.Channels.RequestChannel.Request(Message message, TimeSpan timeout)
   at System.ServiceModel.Channels.ServiceChannel.Call(String action, Boolean oneway, ProxyOperationRuntime operation, Object[] ins, Object[] outs, TimeSpan timeout)
   at System.ServiceModel.Channels.ServiceChannelProxy.InvokeService(IMethodCallMessage methodCall, ProxyOperationRuntime operation)
   at System.ServiceModel.Channels.ServiceChannelProxy.Invoke(IMessage message)

Exception rethrown at [0]:
   at System.Runtime.Remoting.Proxies.RealProxy.HandleReturnMessage(IMessage reqMsg, IMessage retMsg)
   at System.Runtime.Remoting.Proxies.RealProxy.PrivateInvoke(MessageData&amp; msgData, Int32 type)
   at ArcherTech.DataFeed.ArcherAPIWebServiceGen.generalSoap.CreateDomainUserSessionFromInstance(CreateDomainUserSessionFromInstanceRequest request)
   at ArcherTech.DataFeed.ArcherAPIWebServiceGen.generalSoapClient.CreateDomainUserSessionFromInstance(String userName, String instanceName, String password, String usersDomain)
   at ArcherTech.DataFeed.Transporters.ArcherWebServiceTransporter.GetSessionToken(String url)</StackTrace>
                        <InnerException>
                            <ExceptionType>System.Net.WebException, System, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089</ExceptionType>
                            <Message>The underlying connection was closed: Could not establish trust relationship for the SSL/TLS secure channel.</Message>
                            <Source>System</Source>
                            <StackTrace>   at System.Net.HttpWebRequest.GetResponse()
   at System.ServiceModel.Channels.HttpChannelFactory`1.HttpRequestChannel.HttpChannelRequest.WaitForReply(TimeSpan timeout)</StackTrace>
                            <InnerException>
                                <ExceptionType>System.Security.Authentication.AuthenticationException, System, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089</ExceptionType>
                                <Message>The remote certificate is invalid according to the validation procedure.</Message>
                                <Source>System</Source>
                                <StackTrace>   at System.Net.Security.SslState.StartSendAuthResetSignal(ProtocolToken message, AsyncProtocolRequest asyncRequest, Exception exception)
   at System.Net.Security.SslState.StartSendBlob(Byte[] incoming, Int32 count, AsyncProtocolRequest asyncRequest)
   at System.Net.Security.SslState.ProcessReceivedBlob(Byte[] buffer, Int32 count, AsyncProtocolRequest asyncRequest)
   at System.Net.Security.SslState.StartReceiveBlob(Byte[] buffer, AsyncProtocolRequest asyncRequest)
   at System.Net.Security.SslState.StartSendBlob(Byte[] incoming, Int32 count, AsyncProtocolRequest asyncRequest)
   at System.Net.Security.SslState.ProcessReceivedBlob(Byte[] buffer, Int32 count, AsyncProtocolRequest asyncRequest)
   at System.Net.Security.SslState.StartReceiveBlob(Byte[] buffer, AsyncProtocolRequest asyncRequest)
   at System.Net.Security.SslState.StartSendBlob(Byte[] incoming, Int32 count, AsyncProtocolRequest asyncRequest)
   at System.Net.Security.SslState.ProcessReceivedBlob(Byte[] buffer, Int32 count, AsyncProtocolRequest asyncRequest)
   at System.Net.Security.SslState.StartReceiveBlob(Byte[] buffer, AsyncProtocolRequest asyncRequest)
   at System.Net.Security.SslState.StartSendBlob(Byte[] incoming, Int32 count, AsyncProtocolRequest asyncRequest)
   at System.Net.Security.SslState.ForceAuthentication(Boolean receiveFirst, Byte[] buffer, AsyncProtocolRequest asyncRequest)
   at System.Net.Security.SslState.ProcessAuthentication(LazyAsyncResult lazyResult)
   at System.Threading.ExecutionContext.RunInternal(ExecutionContext executionContext, ContextCallback callback, Object state, Boolean preserveSyncCtx)
   at System.Threading.ExecutionContext.Run(ExecutionContext executionContext, ContextCallback callback, Object state, Boolean preserveSyncCtx)
   at System.Threading.ExecutionContext.Run(ExecutionContext executionContext, ContextCallback callback, Object state)
   at System.Net.TlsStream.ProcessAuthentication(LazyAsyncResult result)
   at System.Net.TlsStream.Write(Byte[] buffer, Int32 offset, Int32 size)
   at System.Net.ConnectStream.WriteHeaders(Boolean async)</StackTrace>
                            </InnerException>
                        </InnerException>
                    </Exception>
                </TraceRecord>
            </DataItem>
        </TraceData>
    </ApplicationData>
</E2ETraceEvent>


CauseMisconfigured data feed.
Resolution
  1. Ensure the target URL for the data feed to match how the SSL certificate is configured.
  2. Ensure the Instance name matches what is listed in the Archer Control Panel.
  3. Ensure the credentials for account accessing API are correct (If using Anonymous make sure that the API application and WS folder in Microsoft IIS are set for Anonymous Authentication).

As an additional note to step 1, if a load balancer is being used, try using a path directly to each server to narrow down if there is a particular server having issues.

Attachments

    Outcomes