E-IB: "javax.net.ssl.SSLHandshakeException: Received fatal alert: handshake_failure" Gateway Error After TLS 1.2 is Enforced
(Doc ID 2234361.1)
Last updated on JULY 09, 2024
Applies to:
PeopleSoft Enterprise PT PeopleTools - Version 8.53 to 8.55 [Release 8.4]Information in this document applies to any platform.
Symptoms
Applies to Tools 8.5x on Linux platform
Sample Environment:
----------------
PeopleTools Version: 8.55.11
App Version: FSCM 9.2 PI#20, TEST environment
LINUX platform
Appserv
JAVA version in PS_HOME (for app and prcs domain) is java version "1.7.0_80"
Java(TM) SE Runtime Environment (build 1.7.0_80-b15)
Java HotSpot(TM) 64-Bit Server VM (build 24.80-b11, mixed mode)
WebLogic Server 12.1.3.0.0
Initial JDK Version for WLS : JDK 1.7.0_99
Subsequently updated to 1.7.0_131
Issue:
--------
The site has enforced TLS 1.2 at the web server (by adding java property -Dweblogic.security.SSL.minimumProtocolVersion=TLSv1.2) as per customer requirement. However, while loading Gateway Connectors, with the HTTPS URL , the site is getting the following error in the App Server log.
PSAPPSRV.5079 (5) [2017-02-04T02:22:45.069 PSFT_ID@<DOMAIN_NAME> (IE 11.0; WIN7) ICPanel] - - - (1) Java exception thrown: javax.net.ssl.SSLHandshakeException: Received fatal alert: handshake_failure
The site is also seeing the following error in web server's stdout log :
<[Thread[ExecuteThread: '3' for queue: 'weblogic.socket.Muxer',5,Thread Group for Queue: 'weblogic.socket.Muxer']]weblogic.security.SSL.jsseadapter: SSLENGINE: Exception occurred during SSLEngine.wrap(ByteBuffer,ByteBuffer).
javax.net.ssl.SSLHandshakeException: Client requested protocol TLSv1 not enabled or not supported
at sun.security.ssl.Handshaker.checkThrown(Handshaker.java:1404)
at sun.security.ssl.SSLEngineImpl.checkTaskThrown(SSLEngineImpl.java:519)
at sun.security.ssl.SSLEngineImpl.writeAppRecord(SSLEngineImpl.java:1197)
at sun.security.ssl.SSLEngineImpl.wrap(SSLEngineImpl.java:1169)
..
..
In another scenario, error received was java.net.SocketException: Software caused connection abort: recv failed.
Cause
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
Symptoms |
Cause |
Solution |
References |