000029708 - Error: "Secure Connection Failed" from later versions of Firefox and Chrome web browsers in RSA Authentication Manager 8.1

Document created by RSA Customer Support Employee on Jun 14, 2016Last modified by RSA Customer Support Employee on Jul 8, 2016
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000029708
Applies ToRSA Product Set: SecurID
RSA Product/Service Type: Authentication Manager
RSA Version/Condition: 8.1.0
Platform: VMware
O/S Version: ESXi 5.0
IssueCan't connect to Authentication Manager by the Security Console, Operations Console, or Self-Service Console with Firefox after updating to Firefox 36:
Secure Connection Failed
An error occurred during a connection to jmulsman-vm115.na.rsa.net:7004. SSL peer rejected a handshake message for unacceptable content. (Error code: ssl_error_illegal_parameter_alert)
    The page you are trying to view cannot be shown because the authenticity of the received data could not be verified.
    Please contact the website owners to inform them of this problem.
CauseTraffic of type SSLv3 has been seen when using Firefox 36, where TLS1.2 would be expected.  
Firefox version 36 and Chrome made changes to required ciphers and connection methods, and Authentication Manager will not accept requests from this version. s of 3/2015,  a change for Authentication Manager to be compatible with this version of FireFox and Chrome is included in AM 8.1 SP1 P2. and thereafter.
ResolutionThis issue is resolved in RSA Authentication Manager AM8.1 SP1 Patch 2 and later.
NotesIf a customer has Web-Tier(s) installed prior to installing SP1 p2 they will need to uninstall/reinstall the web-tier(s) after apply SP1 patch 2 using the updated web-tier install kit.