000033355 - When trying to run RSA Authentication Manager 8.1 SDK .NET C# sample on Windows 2003 getting the error: "The underlying connection was closed: An unexpected error occurred on a send.:"

Document created by RSA Customer Support Employee on Jan 11, 2017Last modified by RSA Customer Support Employee on Apr 22, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000033355
Applies ToRSA Product Set:  SecurID
RSA Product/Service Type:  Authentication Manager SDK
RSA Version/Condition:  8.1
IssueGetting the below error when trying to run the Authentication Manager 8.1 SDK .NET C# admin sample on Windows 2003 (For all .Net Framework versions) :
Error: The underlying connection was closed: An unexpected error occurred on a send.
at System.Web.Services.Protocols.WebClientProtocol.GetWebResponse(WebRequest request)
at System.Web.Services.Protocols.HttpWebClientProtocol.GetWebResponse(WebRequest request)
at System.Web.Services.Protocols.SoapHttpClientProtocol.Invoke(String methodName, Object[] parameters)
at com.rsa.webservice.CommandServerService.executeCommand(String in0, TargetableCommand in1) in c:\jenkins\workspace\am-sdk-build\am\integration\rsaws\target\generated-csharp-dotnet20\com.rsa.webservice.cs:line 160
at com.rsa.command.SOAPCommandTarget.executeCommand(TargetableCommand command) in c:\jenkins\workspace\am-sdk-build\am\integration\rsaws\target\shared-csharp\CommandHelper.cs:line 478
at com.rsa.command.SOAPCommandTarget.Login(String name, String password, String method) in c:\jenkins\workspace\am-sdk-build\am\integration\rsaws\target\shared-csharp\CommandHelper.cs:line 581
at com.rsa.command.SOAPCommandTarget.Login(String name, String password) in c:\jenkins\workspace\am-sdk-build\am\integration\rsaws\target\shared-csharp\CommandHelper.cs:line 553
at com.rsa.samples.admin.AdminAPIDemos.Main(String[] args)

CauseThis error indicates an SSL handshake failure between the Windows 2003 server and the AM server when trying to initiate the session from within the SDK sample.
The SSL Handshake is failing because Windows 2003 doesn't support any of the ciphers used by the AM server on port 7002. 
ResolutionThis can be resolved by applying windows Hotfix "Fix192447" which enables the "TLS_RSA_WITH_AES_128_CBC_SHA " and "TLS_RSA_WITH_AES_256_CBC_SHA " ciphers which are used by the AM server on port 7002.
The fix can be downloaded from this link: https://support.microsoft.com/en-us/kb/948963