|Applies To||RSA OneStep 6.9|
RSA Certificate Manager 6.9
Apache web server
Red Hat Enterprise Linux 5.x
|Issue||OneStep fails with error 1364 / KCSOSE_UNABLE: Unable to process request (possible bad server parameters)|
KCSOSD_ERROR_STATUS=1364 ==> as per onestepAPI.h: #define KCSOSE_UNABLE 0x1364 /* errors from Certification Manager */
KCSOSD_PLUGIN_STATUS=1356 ==> as per onestepAPI.h: #define KCSOSE_GENERATE_CERTIFICATE 0x1356 /* plugin status codes from KCSOSExchange */
The problem occurs consistently whether the sample flatfile demo plugin or custom OneStep plugin is used. When using flatfile demo plugin, the authentication form (requesting userid and password) is presented. The OneStep process fails after entering correct authentication credentials.
If OneStep CGI (OneStep/cgi-bin/onestep) is replaced with the one from 6.8 build 518, then everything works.
|Cause||BSAFE SSL-C libraries were not installed on the OneStep host machine|
|Resolution||Install BSAFE SSL-C libraries on the OneStep host machine (under folder /usr/lib on RHEL box). Follow steps in RSA Certificate Manager 6.9 Installation Guide, section "Installing RSA BSAFE SSL-C Library Files", page 22, to install BSAFE libraries.|
After installing the required BSAFE libraries, re-test OneStep to confirm certificate generation and installation works as expected.
|Workaround||OneStep was upgraded from 6.8 build 518 to 6.9 build 554. OneStep was installed on a third-party web server (Apache) on a host different than RSA Certificate Manager.|
|Notes||The requirement to pre-install BSAFE libraries when OneStep is hosted on a third-party web server is documented in RSA OneStep 6.9 Developer's Guide, page 71.|
|Legacy Article ID||a62076|