Article Number
000033355
Applies To
RSA Product Set: SecurID
RSA Product/Service Type: Authentication Manager SDK
RSA Version/Condition: 8.1
Platform: Windows Server 2003
Issue
The following error is seen when trying to run the Authentication Manager 8.1 SDK .NET C# admin sample on Windows 2003 for all .Net Framework versions:
Error: The underlying connection was closed: An unexpected error occurred on a send.
at System.Web.Services.Protocols.WebClientProtocol.GetWebResponse(WebRequest request)
at System.Web.Services.Protocols.HttpWebClientProtocol.GetWebResponse(WebRequest request)
at System.Web.Services.Protocols.SoapHttpClientProtocol.Invoke(String methodName, Object[] parameters)
at com.rsa.webservice.CommandServerService.executeCommand(String in0, TargetableCommand in1) in c:\jenkins\workspace\am-sdk-build\am\integration\rsaws\target\generated-csharp-dotnet20\com.rsa.webservice.cs:line 160
at com.rsa.command.SOAPCommandTarget.executeCommand(TargetableCommand command) in c:\jenkins\workspace\am-sdk-build\am\integration\rsaws\target\shared-csharp\CommandHelper.cs:line 478
at com.rsa.command.SOAPCommandTarget.Login(String name, String password, String method) in c:\jenkins\workspace\am-sdk-build\am\integration\rsaws\target\shared-csharp\CommandHelper.cs:line 581
at com.rsa.command.SOAPCommandTarget.Login(String name, String password) in c:\jenkins\workspace\am-sdk-build\am\integration\rsaws\target\shared-csharp\CommandHelper.cs:line 553
at com.rsa.samples.admin.AdminAPIDemos.Main(String[] args)
Cause
This error indicates an SSL handshake failure between the Windows 2003 server and the Authentication Manager server when trying to initiate the session from within the SDK sample.
The SSL handshake is failing because Windows 2003 does not support any of the ciphers used by the Authentication Manager server on port 7002.
Resolution
This can be resolved by applying
Microsoft Windows Server kb 948963 / Hotfix 192447 (Cipher Suite upgrade) bad link which enables the
TLS_RSA_WITH_AES_128_CBC_SHA and
TLS_RSA_WITH_AES_256_CBC_SHA ciphers which are used by the Authentication Manager server on port 7002.