SSL Socket Connection Error with RSA Authentication Agent versions 7.3.1 [48] through 7.3.2 [80] and Authentication Manager 8.4 +

2 years ago

Originally Published: 2019-11-25

Article Number

000064827

Applies To

RSA Product Set: SecurID
RSA Product/Service Type: Authentication Manager
RSA Version/Condition: 8.4.
RSA Authentication Agent: versions 7.3.1 [48] through 7.3.2 [80]

Issue

Auto-Registration functionality does not work properly with Authentication Manager 8.4 and higher when using RSA Authentication Agent: versions 7.3.1 [48] through 7.3.2 [80]

"RSA Authentication Agent versions 7.3.1 [48] through 7.3.2 [80] were linked with a BSAFE version where the TLS 1.2 handshake was broken but still worked by negotiating down to TLS 1.1"

Authentication Manager 8.4 and higher uses only TLS 1.2.

SSL Socket Connection Errors can be seen in the System Activity Monitor or by running a System Log Report via the Security Console.

2019-11-25 14:58:56

WARN

26246

SSL Socket Connection Error

SSL handshake exception occurred with the remote host “Agent IP Address” communicating over the SSL channel:“No shared ciphers for protocol”

Warning

Remote client communicates over unsupported SSL/TLS channel.

SYSTEM

Resolution

Upgrade your Windows agents to the latest version; that is, an agent later than 7.3.2 [85] for this particular problem.

Notes

More information can be found in a similar knowledge base article:

https://community.rsa.com/docs/DOC-95921

Don't see what you're looking for?

Potential Impact from Salesforce Device Activation Change

Related Articles

Trending Articles