Article Content
Article Number | 000034913 |
Applies To | RSA Product Set: Archer Platform: Windows |
Issue | The RSA Archer Configuration Service starts; however, the following error is encountered when loading the RSA Archer Control Panel (ACP). The errors are observed through the Output panel within the RSA Archer Control Panel. An error occurred reading the instance groups. Unexpected failure when broadcasting or receiving. An error occurred loading the instances. Unexpected failure when broadcasting or receiving. Below is an example of what is seen in the ACP:
<E2ETraceEvent xmlns="http://schemas.microsoft.com/2004/06/E2ETraceEvent"> The following error is observed in the Windows Event Viewer: Log Name: Archer Source: Archer Date: 3/6/2017 7:06:17 PM Event ID: 0 Task Category: None Level: Error Keywords: Classic User: N/A Computer: ArcherHost.mydomain.com Description: Error initializing log center - ArcherTech.Configuration.ConfigurationServiceException: Unexpected failure when broadcasting or receiving. ---> System.ServiceModel.Security.MessageSecurityException: An unsecured or incorrectly secured fault was received from the other party. See the inner FaultException for the fault code and detail. ---> System.ServiceModel.FaultException: An error occurred when verifying security for the message. --- End of inner exception stack trace --- Server stack trace: at System.ServiceModel.Channels.SecurityChannelFactory`1.SecurityRequestChannel.ProcessReply(Message reply, SecurityProtocolCorrelationState correlationState, TimeSpan timeout) at System.ServiceModel.Channels.SecurityChannelFactory`1.SecurityRequestChannel.Request(Message message, TimeSpan timeout) at System.ServiceModel.Security.SecuritySessionSecurityTokenProvider.DoOperation(SecuritySessionOperation operation, EndpointAddress target, Uri via, SecurityToken currentToken, TimeSpan timeout) at System.ServiceModel.Security.SecuritySessionSecurityTokenProvider.GetTokenCore(TimeSpan timeout) at System.IdentityModel.Selectors.SecurityTokenProvider.GetToken(TimeSpan timeout) at System.ServiceModel.Security.SecuritySessionClientSettings`1.ClientSecuritySessionChannel.OnOpen(TimeSpan timeout) at System.ServiceModel.Channels.CommunicationObject.Open(TimeSpan timeout) at System.ServiceModel.Channels.ServiceChannel.OnOpen(TimeSpan timeout) at System.ServiceModel.Channels.CommunicationObject.Open(TimeSpan timeout) at System.ServiceModel.Channels.ServiceChannel.CallOnceManager.CallOnce(TimeSpan timeout, CallOnceManager cascade) at System.ServiceModel.Channels.ServiceChannel.EnsureOpened(TimeSpan timeout) at System.ServiceModel.Channels.ServiceChannel.Call(String action, Boolean oneway, ProxyOperationRuntime operation, Object[] ins, Object[] outs, TimeSpan timeout) at System.ServiceModel.Channels.ServiceChannelProxy.InvokeService(IMethodCallMessage methodCall, ProxyOperationRuntime operation) at System.ServiceModel.Channels.ServiceChannelProxy.Invoke(IMessage message) Exception rethrown at [0]: at System.Runtime.Remoting.Proxies.RealProxy.HandleReturnMessage(IMessage reqMsg, IMessage retMsg) at System.Runtime.Remoting.Proxies.RealProxy.PrivateInvoke(MessageData& msgData, Int32 type) at ArcherTech.Configuration.IConfigurationServiceAPI.AssemblyVersion() at ArcherTech.Configuration.WCFPropertyServiceClient.<AssemblyVersion>b__12() at ArcherTech.Configuration.WCFPropertyServiceClient.ExecuteInOperationContextScope[TResult](Func`1 func) at ArcherTech.Configuration.WCFPropertyServiceClient.AssemblyVersion() at ArcherTech.Configuration.PropertyServiceProxyFactory.IsValidClient(IConfigurationServiceAPI testClient, Exception& exception) --- End of inner exception stack trace --- at ArcherTech.Configuration.PropertyServiceProxyFactory.GetWCFPropertyServiceClient() at ArcherTech.Configuration.PropertyServiceProxyFactory.GetPropertyServiceProxy() at ArcherTech.Configuration.PropertyServiceClient.GetListeners() at ArcherTech.Configuration.PropertyServiceClient.ArcherTech.Configuration.ICommunicationProvider.GetListeners() at Security2000.Global.Start() Event Xml: <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event"> <System> <Provider Name="Archer" /> <EventID Qualifiers="0">0</EventID> <Level>2</Level> <Task>0</Task> <Keywords>0x80000000000000</Keywords> <TimeCreated SystemTime="2017-03-06T11:06:17.000000000Z" /> <EventRecordID>57743</EventRecordID> <Channel>Archer</Channel> <Computer>ArcherHost.mydomain.com</Computer> <Security /> </System> <EventData> <Data>Error initializing log center - ArcherTech.Configuration.ConfigurationServiceException: Unexpected failure when broadcasting or receiving. ---> System.ServiceModel.Security.MessageSecurityException: An unsecured or incorrectly secured fault was received from the other party. See the inner FaultException for the fault code and detail. ---> System.ServiceModel.FaultException: An error occurred when verifying security for the message. --- End of inner exception stack trace --- Server stack trace: at System.ServiceModel.Channels.SecurityChannelFactory`1.SecurityRequestChannel.ProcessReply(Message reply, SecurityProtocolCorrelationState correlationState, TimeSpan timeout) at System.ServiceModel.Channels.SecurityChannelFactory`1.SecurityRequestChannel.Request(Message message, TimeSpan timeout) at System.ServiceModel.Security.SecuritySessionSecurityTokenProvider.DoOperation(SecuritySessionOperation operation, EndpointAddress target, Uri via, SecurityToken currentToken, TimeSpan timeout) at System.ServiceModel.Security.SecuritySessionSecurityTokenProvider.GetTokenCore(TimeSpan timeout) at System.IdentityModel.Selectors.SecurityTokenProvider.GetToken(TimeSpan timeout) at System.ServiceModel.Security.SecuritySessionClientSettings`1.ClientSecuritySessionChannel.OnOpen(TimeSpan timeout) at System.ServiceModel.Channels.CommunicationObject.Open(TimeSpan timeout) at System.ServiceModel.Channels.ServiceChannel.OnOpen(TimeSpan timeout) at System.ServiceModel.Channels.CommunicationObject.Open(TimeSpan timeout) at System.ServiceModel.Channels.ServiceChannel.CallOnceManager.CallOnce(TimeSpan timeout, CallOnceManager cascade) at System.ServiceModel.Channels.ServiceChannel.EnsureOpened(TimeSpan timeout) at System.ServiceModel.Channels.ServiceChannel.Call(String action, Boolean oneway, ProxyOperationRuntime operation, Object[] ins, Object[] outs, TimeSpan timeout) at System.ServiceModel.Channels.ServiceChannelProxy.InvokeService(IMethodCallMessage methodCall, ProxyOperationRuntime operation) at System.ServiceModel.Channels.ServiceChannelProxy.Invoke(IMessage message) Exception rethrown at [0]: at System.Runtime.Remoting.Proxies.RealProxy.HandleReturnMessage(IMessage reqMsg, IMessage retMsg) at System.Runtime.Remoting.Proxies.RealProxy.PrivateInvoke(MessageData& msgData, Int32 type) at ArcherTech.Configuration.IConfigurationServiceAPI.AssemblyVersion() at ArcherTech.Configuration.WCFPropertyServiceClient.<AssemblyVersion>b__12() at ArcherTech.Configuration.WCFPropertyServiceClient.ExecuteInOperationContextScope[TResult](Func`1 func) at ArcherTech.Configuration.WCFPropertyServiceClient.AssemblyVersion() at ArcherTech.Configuration.PropertyServiceProxyFactory.IsValidClient(IConfigurationServiceAPI testClient, Exception& exception) --- End of inner exception stack trace --- at ArcherTech.Configuration.PropertyServiceProxyFactory.GetWCFPropertyServiceClient() at ArcherTech.Configuration.PropertyServiceProxyFactory.GetPropertyServiceProxy() at ArcherTech.Configuration.PropertyServiceClient.GetListeners() at ArcherTech.Configuration.PropertyServiceClient.ArcherTech.Configuration.ICommunicationProvider.GetListeners() at Security2000.Global.Start()</Data> </EventData> </Event>
|
Cause | The issue is commonly found in environment where a CA issued certificate is used with the RSA Archer Installation, where a duplicate CA certificate was left in Certificate Store after certificate renewal. The example above shows the duplicate CA certificate (for example mydomain.com) found in the Certificate Store. |
Resolution |
Found multiple X.509 certificates using the following search criteria: StoreName 'My', StoreLocation 'LocalMachine', FindType 'FindBySubjectName', FindValue 'mydomain.com'. Provide a more specific find value.
|