000026150 - KM Client initialization error: 4780073; Failed to parse P12 file: status = 1958

Document created by RSA Customer Support Employee on Jun 16, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000026150
Applies ToRSA Key Manager Client 1.5.x
IssueKM Client initialization error: 4780073
Debug output (from setting "kms.debug=true" in config file) shows

Failed to parse P12 file: status = 1958
Cause

Error 4780073 is KMS_INIT_P12_PARSE (include/KMSError.h).
Error 1958 (0x07A6) is from the underlying Cert-C product and is #define'd as E_HMAC_FAILED.

The password for the PKCS #12 file is incorrect.
ResolutionMake sure that the PKCS #12 password (either specified in the call to KMSInit() or as the value for kms.sslPKCS12Password in the config file) is the correct password for the PKCS #12 file (specified as the value for kms.sslPKCS12File in the config file).

Also, when reading the client config file, RKM Client treats the text beginning with '#' until the end of line as a comment, so if the password contains '#' then it will not be read correctly.  Re-create the PKCS #12 file with a password that does not contain '#' and use that instead.  Alternatively, the password may be passed in as an argument to KMSInit() and kms.sslPKCS12Password should be omitted from the config file.

An easy way to verify the password on Windows is to double-click the PKCS #12 file, click Next, click Next, enter the password and click Next (you can then click Cancel -- don't have to actually import the PKCS #12 file, but if it gets past the password entry screen without any errors, then the password is correct).

Legacy Article IDa35629

Attachments

    Outcomes