000035384 - RSA Identity Governance and Lifecycle Microsoft SQL Server Collectors can no longer connect to the SQL Server database after upgrade to Microsoft SQL Server 2012 and Microsoft Windows 2012

Document created by RSA Customer Support Employee on Aug 1, 2017
Version 1Show Document
  • View in full screen mode

Article Content

Article Number000035384
Applies ToRSA Product Set: RSA Identity Governance and Lifecycle 
RSA Version/Condition: 6.9+ (JDK 6.0), 7.X+ (JDK 7.0)
Platform (Other): JDBC 4.0, JDBC 4.1
Platform (Other): Microsoft SQL Server 2012
Platform (Other): Microsoft Windows 2012
 
IssueA working Microsoft SQL Server IDC and/or ADC can no longer connect to SQL Server and collect data after upgrading to Microsoft SQL Server 2012 and Microsoft Windows 2012 (the platform on which Microsoft SQL Server is installed.)
The aveksaServer.log has the following error:
 
06/21/2017 11:20:33.239 ERROR (ApplyChangesRegularThread-136287) [SystemErr] 
com.microsoft.sqlserver.jdbc.SQLServerException: The driver could not establish
a secure connection to SQL Server by using Secure Sockets Layer (SSL) encryption.
Error: "SQL Server did not return a response. The connection has been closed.
"

The collector is configured to use the Microsoft SQL Server JDBC driver:
The User-added image
CauseThe JDBC driver being used to access Microsoft SQL Server is JDBC 4.0 or 4.1. Windows 2012 requires 1028 ciphers which are not supported until JDBC 4.2. However, this version of the driver cannot be used with RSA Identity Governance and LIfecycle because it requires JDK 8.0.  
ResolutionUse the JTDS JDBC driver. This may be downloaded for free from the web.
  1. Upload the driver to 
  1. Configure the collector(s) as follows:
User-added image

Attachments

    Outcomes