E-IB: "javax.net.ssl.SSLHandshakeException: Received fatal alert: handshake_failure" Gateway Error After TLS 1.2 is Enforced

(Doc ID 2234361.1)

Last updated on OCTOBER 02, 2017

Applies to:

PeopleSoft Enterprise PT PeopleTools - Version 8.53 to 8.55 [Release 8.4]
Information in this document applies to any platform.

Symptoms

Applies to Tools 8.5x on Linux platform

Sample Environment:
----------------
PeopleTools Version: 8.55.11
App Version: FSCM 9.2 PI#20,  TEST environment
LINUX  platform

Appserv
JAVA version in PS_HOME (for app and prcs domain) is java version "1.7.0_80"
Java(TM) SE Runtime Environment (build 1.7.0_80-b15)
Java HotSpot(TM) 64-Bit Server VM (build 24.80-b11, mixed mode)


WebLogic Server 12.1.3.0.0
Initial JDK Version for WLS : JDK 1.7.0_99

Subsequently updated to 1.7.0_131


Issue:
--------

The site has enforced TLS 1.2 at the web server ( b adding java property -Dweblogic.security.SSL.minimumProtocolVersion=TLSv1.2 )  as per customer requirement.   However, while loading Gateway Connectors, with the HTTPS URL ,  the site is getting the following error in the App Server log.

PSAPPSRV.5079 (5) [2017-02-04T02:22:45.069 PSFT_ID@testserver.com (IE 11.0; WIN7) ICPanel] - - - (1) Java exception thrown: javax.net.ssl.SSLHandshakeException: Received fatal alert: handshake_failure

The site is also seeing the following error in web server's stdout log :

<[Thread[ExecuteThread: '3' for queue: 'weblogic.socket.Muxer',5,Thread Group for Queue: 'weblogic.socket.Muxer']]weblogic.security.SSL.jsseadapter: SSLENGINE: Exception occurred during SSLEngine.wrap(ByteBuffer,ByteBuffer).
javax.net.ssl.SSLHandshakeException: Client requested protocol TLSv1 not enabled or not supported
at sun.security.ssl.Handshaker.checkThrown(Handshaker.java:1404)
at sun.security.ssl.SSLEngineImpl.checkTaskThrown(SSLEngineImpl.java:519)
at sun.security.ssl.SSLEngineImpl.writeAppRecord(SSLEngineImpl.java:1197)
at sun.security.ssl.SSLEngineImpl.wrap(SSLEngineImpl.java:1169)
..


Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms