Warning, "<sgdverisignrsasecureserver>1000-bit RSA Key Which Is Considered A Security Risk" written to Console during SGD Upgrade or JVM Update (Doc ID 2563968.1)

Last updated on JUNE 28, 2022

Applies to:

Symptoms

While upgrading a legacy Secure Global Desktop (SGD) Deployment to version 5.4, the SGD Administrator observed the following message written to the console:

This event was not captured within the install logs, did not present within runtime SGD logs, and did not appear to impact the upgrade process, or user connectivity. 

This incident was repeated the following week, as the SGD Administrator applied the latest recommended JVM Updates to the recently upgraded server.

Changes

This behavior was seen as the SGD Administrator updated the JVM hosted on the legacy deployment:  first, as a product of the initial upgrade to SGD 5.4, and later, as an updated JVM was applied to the system.

In this particular machine, "ENS Stamping" showed that the server had been originally installed with SGD 4.61, and had been routinely upgraded as new versions of the product were made available. 

Cause

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.