Problem with SSL Server certificate installed on Netegrity Affiliate Minder Agent

3 years ago

Originally Published: 2004-05-11

Article Number

000057489

Applies To

Keon Certificate Authority 6.x
Sun Solaris 2.8
Netegrity Affiliate Minder Agent

Issue

Problem with SSL Server certificate installed on Netegrity Affiliate Minder Agent
Error:
Apr 14, 2004 4:16:01 PM[8145900:E] portaldispatcher: Error sending SOAP msg Apr 14, 2004 4:16:01 PM[8145900:E] portaldispatcher:Received exception com.rsa.ssl.AlertedException: Not signing certificate while building <AFFILIATEMSG><AFFMETHOD>GET_ASSERTION_FROM_REFERENCE</AFFMETHOD><PNAME>ASSERTION_REFERENCE</PNAME><PVALUE>AAG4GEUmEKDqQxv/ad00au7/gxKLanRIYzJYWFNuWmtldllKUkpDVEJUTFJnYkhOQT06ODg2M2NhNmRjODUwOTJlOA==</PVALUE><PNAME>AFFILIATE_NAME</PNAME><PVALUE>testaffiliate</PVALUE><PNAME>PORTAL_NAME</PNAME><PVALUE>AetnaPortal</PVALUE><PNAME>PORTAL_URL</PNAME><PVALUE>https://fs.aetnat.com/affwebservices/assertionretriever</PVALUE><PNAME>COMPANY_SOURCEID</PNAME><PVALUE>b818452610a0ea431bff69dd346aeeff83128b6a</PVALUE></AFFILIATEMSG> Apr 14, 2004 4:16:01 PM[8145900:E] Exception Stack Trace: com.rsa.ssl.AlertedException: Not signing certificate at com.rsa.ssl.ssl3.SSLV3ClientProtocol.init(SSLV3ClientProtocol.java:176) at com.rsa.ssl.ssl3.SSLV3ClientProtocol.<init>(SSLV3ClientProtocol.java:131) at com.rsa.ssl.common.SSLV3Loader.startSSL3ClientProtocol(SSLV3Loader.java:315) at com.rsa.ssl.common.ClientProtocol.sendHell

o(ClientProtocol.java:233) at com.rsa.ssl.SSLSocket.startHandshake(SSLSocket.java:403) at com.rsa.ssl.SSLSocket.getInputStream(SSLSocket.java:192) at com.netegrity.srca.connection.SSLHandler.startSession(SSLHandler.java:194) at com.netegrity.srca.Srca.invoke(Srca.java:211) at com.netegrity.srca.Srca.invoke(Srca.java:225) at com.netegrity.srca.Srca.invoke(Srca.java:225) at com.netegrity.srca.Srca.invoke(Srca.java:225) at com.netegrity.srca.Srca.invoke(Srca.java:225) at com.netegrity.srca.Srca.invoke(Srca.java:225) at com.netegrity.affiliateconnection.SmAffPortalDispatcher.ProcessMsg(SmAffPortalDispatcher.java:239) at com.netegrity.affiliateserver.SmAffPortalMsgHandler.SendPortalMsg(SmAffPortalMsgHandler.java:95) at com.netegrity.affiliatemsgs.SmAffGetAssertionMsgHandler.Process(SmAffGetAssertionMsgHandler.java:137) at com.netegrity.serverframework.SmMsgDispatcher.run(SmMsgDispatcher.java:132)

Cause

Netegrity Affiliate Minder Agent can only use a V1 SSL Server certificate

Resolution

To correct this problem, issue the SSL Server certificate on KCA with no extension thus making it a V1 certificate

Don't see what you're looking for?

Related Articles

Trending Articles