000020819 - ClearTrust Servers do not start if you are using an Active Directory data store

Document created by RSA Customer Support Employee on Jun 16, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000020819
Applies ToRSA ClearTrust 5.5
Microsoft Active Directory
IssueRSA ClearTrust Servers don't start if using an Active Directory data store and a JKS-type KeyStore

The Servers issue an error message similar to the following:

11:23:52:093 [*] [main] - Could not initialize KeyStore:
java.security.KeyStoreException: JKS not found
java.lang.Error: Could not initialize KeyStore:
java.security.KeyStoreException:
JKS not found at sirrus.util.keystore.KeyStoreFactory.getKeyStore(KeyStoreFactory.java:194)

ResolutionTo use JKS-type KeyStores, you must set the following two parameters in your <CT_HOME>/conf/ldap.conf file:

cleartrust.data.ldap.directory.activedirectory.ssl.ca.keystore_provider :SUN
cleartrust.data.ldap.directory.activedirectory-bind.ssl.ca.keystore_provider :SUN
NotesFrom 5.5 Release Notes: Issue Tracking Number: 9346
Legacy Article IDa19122

Attachments

    Outcomes