OIM Configuration Wizard Fails with "Illegal key size" Error (Doc ID 1901181.1)

Last updated on JANUARY 03, 2016

Applies to:

Identity Manager - Version 11.1.2.2.0 and later
Information in this document applies to any platform.

Symptoms

When running $OIM_HOME/bin/config.sh to kick off the OIM Installation Wizard it may fail and you may see the following error in your install log:

===
oracle.security.jps.service.keystore.KeyStoreServiceException: Failed to perform cryptographic operation[[
java.lang.IllegalArgumentException: oracle.security.jps.service.keystore.KeyStoreServiceException: Failed to perform cryptographic operation
at oracle.security.jps.internal.credstore.ldap.CredentialEntityMapper.getEntity(CredentialEntityMapper.java:359)
at oracle.security.jps.internal.policystore.rdbms.JpsDBDataManager.queryBaseEntities(JpsDBDataManager.java:6666)
at oracle.security.jps.internal.credstore.ldap.CsfStoreManager.getCredential(CsfStoreManager.java:695)
at oracle.security.jps.internal.credstore.ldap.CsfStoreManager.modifyCredential(CsfStoreManager.java:623)
at oracle.security.jps.internal.credstore.ldap.CsfStoreManager.modifyCredential(CsfStoreManager.java:617)
...
Caused by: oracle.security.jps.service.keystore.KeyStoreServiceException: Failed to perform cryptographic operation
at oracle.security.jps.internal.keystore.util.CryptoUtil.decrypt(CryptoUtil.java:472)
at oracle.security.jps.internal.keystore.util.CryptoUtil.decodeAliasWithEncryptedContent(CryptoUtil.java:554)
at oracle.security.jps.internal.keystore.util.CryptoUtil.decryptPassword(CryptoUtil.java:768)
at oracle.security.jps.internal.keystore.util.CryptoUtil.decryptPassword(CryptoUtil.java:764)
at oracle.security.jps.internal.credstore.ldap.CredentialEntityMapper.getEntity(CredentialEntityMapper.java:278)
... 20 more
Caused by: java.security.InvalidKeyException: Illegal key size
at javax.crypto.Cipher.checkCryptoPerm(Cipher.java:1024)
at javax.crypto.Cipher.implInit(Cipher.java:790)
at javax.crypto.Cipher.chooseProvider(Cipher.java:849)
at javax.crypto.Cipher.init(Cipher.java:1348)
at javax.crypto.Cipher.init(Cipher.java:1282)
at oracle.security.jps.internal.keystore.util.CryptoUtil.decrypt(CryptoUtil.java:456)
... 24 more

===

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms