000022176 - com.rsa.jsafe.AUTHbl signer information does not match signer in RSA Authentication Agent 5.0.3 API for Java

Document created by RSA Customer Support Employee on Jun 16, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000022176
Applies ToRSA Authentication Agent 5.0.3 API for Java
RSA Authentication Manager 7.1
BEA WebLogic 8.1
WebLogic 10.0
Sun Solaris 2.9
Sun Solaris 10
Microsoft Windows 2000
Microsoft Windows 2003
Issuecom.rsa.jsafe.AUTHbl signer information does not match signer in RSA Authentication Agent 5.0.3 API for Java
com.rsa.common.SystemException: Command target (CacheableCommandTargetBasicAuth) initialization failure  java.lang.SecurityException: class "com.rsa.jsafe.JSAFE_SecureRandom"'s signer information does not match signer information of other classes in the same package
CauseThis is the correct behaviour and occurs where JSAFE routines (e.g. classes from com.rsa.jsafe.*) have been loaded from a jar file other than authapi.jar and is most commonly seen where RSA Authentication Agent API for Java is used in a BEA WebLogic server, this includes the use of an RSA Authentication Manager SDK application.
Resolution

The Java Authentication Agent API supplies two alternative JAR files to cater for various situations.

  • authapi.jar - This is the standard JAR file suitable for most circumstances
  • authapi_without_jsafe.jar - To be used where the JSAFE routines have been supplied by some other Java archive

Simply replace authapi.jar with authapi_without_jsafe.jar and then update your CLASSPATH appropriately to use authapi_without_jsafe.jar.

Legacy Article IDa27300

Attachments

    Outcomes