How to get more information if CA Access Gateway (SPS) is failing SSL connection with back end ?

Document ID : KB000046849
Last Modified Date : 14/02/2018
Show Technical Document Details

Introduction:

If you are stuck with the CA Access Gateway (SPS) and backend connection (SSL), you may want to activate extra loggin as there is not much in the server.log / nopup.log or HTTP client log.

Instructions:

Depending on your OS, add the following -Djavax.net.debug=all to the java command line in

SmSpsProxyEngine.properties (Windows)

example :

NETE_SPS_PROXYENGINE_CMD="%NETE_SPS_JAVA_HOME%\bin\java.exe" -Xms512m -Xmx1024m -XX:MaxPermSize=256M -Djavax.net.debug=all -Dcatalina.base="%NETE_SPS_TOMCAT_HOME%" -Dcatalina.home="%NETE_SPS_TOMCAT_HOME%" -Djava.endorsed.dirs="%NETE_SPS_TOMCAT_HOME%\endorsed" -Djava.io.tmpdir="%NETE_SPS_TOMCAT_HOME%\temp" -DHTTPClient.log.mask=0 -DHTTPClient.Modules="HTTPClient.RetryModule|org.tigris.noodle.NoodleCookieModule|HTTPClient.DefaultModule" -Dlogger.properties="%NETE_SPS_TOMCAT_HOME%/properties/logger.properties" -DSM_AGENT_LOG_CONFIG="%STS_AGENT_LOG_CONFIG_FILE%" -classpath "%NETE_SPS_TOMCAT_HOME%\bin\proxybootstrap.jar;%NETE_SPS_TOMCAT_HOME%\properties;%NETE_SPS_JAVA_HOME%\lib\tools.jar;%NETE_SPS_TOMCAT_HOME%\bin\bootstrap.jar;%NETE_SPS_ROOT%\resources" com.netegrity.proxy.ProxyBootstrap -config "%NETE_SPS_ROOT%/proxy-engine/conf/server.conf"

proxyserver.sh (Linux/Unix)

example :

$NOHUP_JAVACMD $JVM_MEM_OPTS $JVM_PERF_OPTS $SPS_TOMCAT_OPTS -DNETE_WA_ROOT=$NETE_WA_ROOT -DPWD=$PWD -Djavax.net.debug=all -classpath $CLASSPATH com.netegrity.proxy.ProxyBootstrap -config $CONFIGFILE > $OUTPUT_FILE 2>&1 & echo $! > $SPS_PID_FILE