Error message "Error: java.lang.IllegalArgumentException: Window boundary must be positive" in the RSA SecurID Authentication Engine
Originally Published: 2017-11-25
Article Number
Applies To
RSA Product/Service Type: Authentication Engine
RSA Version/Condition: 2.x
Platform: Java
Issue
java.lang.IllegalArgumentException: Window boundary must be positive
Cause
/**
* Convert between time in Unix style time_t and SDTime (half minutes since
* 1/1/1986).
*
* @param timeT time in seconds since 1/1/1970.
*
* @return time in half minutes since 1/1/1986.
*/
public static int timeTtoSDTime(int timeT) {
return (((timeT / 30) - SDTIME_BASE) & 0x00ffffff);
}
The mask 0x00ffffff causes the time conversion to round to 0 about every 15 years 11 months and 12 days. The rounding occurs at the following times:
Thu, 13 Dec 2001 10:08:00 GMT Fri, 24 Nov 2017 20:16:00 GMT Sun, 06 Nov 2033 06:24:00 GMT Mon, 18 Oct 2049 16:32:00 GMT Wed, 30 Sep 2065 02:40:00 GMT Thu, 11 Sep 2081 12:48:00 GMT Fri, 23 Aug 2097 22:56:00 GMT
Resolution
To apply the fix:
- Stop the RSA SAE based application.
- Copy the following files the application into a backup folder: RSASecurIDAuthenticationEngineAPI.jar
- Replace RSASecurIDAuthenticationEngineAPI.jar file in the application with the one provided in this hotfix kit attached to the article.
- Restart application.
Notes
Customers need to be on RSA SecurID Authentication Engine version 2.6 or 2.8.1 for the hotfix to work as older versions don't have a hotfix.
Attachments
If the attachment does not open when clicked, please refresh the page and try again. You must be logged into view the file(s).
Related Articles
RSA Identity Governance & Lifecycle Entitlements Data Collector (EDC) failure EC[31002] Number of Views Get Java Auth API sample code to authenticate consistently with 'Requires Name Lock' enabled Number of Views AFX failure when Proxy is enabled without defining Proxy Host or Port values in RSA Governance & Lifecycle Number of Views How to correctly handle New PIN Rejected in custom RSA Authentication Agent Number of Views How to capture packets (pcap) using SilverTap for RSA Web Threat Detection Number of Views
Trending Articles
Quick Setup Guide - Passwordless Authentication in Windows MFA Agent for Active Directory RSA MFA Agent 2.3.6 for Microsoft Windows Installation and Administration Guide RSA Authentication Manager 8.9 Release Notes (January 2026) RSA Governance & Lifecycle 8.0.0 Administrators Guide RSA MFA Agent 2.5 for Microsoft Windows Installation and Administration Guide
Don't see what you're looking for?
