000032448 - RSA DLP Network ERROR - HttpChannel.sendViaClient(144) | javax.net.ssl.SSLException: Certificate not verified

Document created by RSA Customer Support Employee on Jul 6, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000032448
Applies ToRSA Product Set: DLP
RSA Product/Service Type: Enterprise Manager
RSA Version/Condition: 8.8/9.0
Platform: CentOS
 
Issue- When you see all RSA DLP network nodes down on the EM webinterface. 
- When you observe the below error in the em.log file located under path: C:\Program Files(x86)\RSA\Enterprise Manager\Logs\em.log
Error: 
 
28 Jan 2016 12:46:02,860 | ERROR - HttpChannel.sendViaClient(144) | javax.net.ssl.SSLException: Certificate not verified.
28 Jan 2016 12:46:02,860 | ERROR - CommonDeviceServiceImpl.setControllerReachability(262) | Controller 1x.xx.xx.xx is not reachable
28 Jan 2016 12:46:06,970 | ERROR - EMApplicationEventMulticaster$1.run(180) | Unexpected exception occurred during event processing: Incident id <544801> was not found; job is recoverable and will be retried

 
CauseThe suspected cause of the issue would due to expired certificate on the network appliances. 
ResolutionSteps: 
1- Start the process of renewing the SSL certificates on all  RSA DLP network nodes via doing below set of actions starting by NC:
 
While logged in as "Tablus" user:
Type below commands: 
 
#resetdevice 
# killca 
#cd /opt/tablus/bin 
# ./initssl.sh 
#cd /opt/rsa/bin 
# ./initssl.sh 
#tabservice start


 

Attachments

    Outcomes