000017948 - Error: 'SSL Handshake Failed' in ACE/Server log; RSA ACE/Server Remote Administration fails

Document created by RSA Customer Support Employee on Jun 16, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000017948
Applies ToRemote Administration
Microsoft Windows
RSA ACE/Server
IssueError: "SSL Handshake Failed" in ACE/Server log; RSA ACE/Server Remote Administration fails
Error: "Cannot connect with administration server"
ResolutionThis error message indicates a problem with the public/private key match between the Remote Administration session and the ACE/Server's administration daemon/server certificates.

1. Start by re-copying the server.cer file from the ACE/Server's ace/data directory to the directory named for the ACE/Server on the remote machine ( typically ace/data/realm/name of aceserver host ).

2. If you are going to FTP the file, ensure that you FTP in binary mode

3. If replacing the server.cer file does not solve the problem, bring down the ACE/Server and brokers, copy the server.cer, server.key and sdti.cer from the original diskette to the ACE/Server ace/data directory and then restart the ACE/Server.
If the RSA Servers' Network adapters have TCP Checksum offloading, disable it. 
Legacy Article ID1.0.204835.2234109