SSLHandshakeException: no cipher suites in common after upgrade

Document ID : KB000039032
Last Modified Date : 14/02/2018
Show Technical Document Details

 Problem:

 After the 10.1 upgrade, we set up EM and WebView jetty servers for SSL using a company's custom certificate as done in previous CA APM version. But the authentication fails and EM log shows an exception error, "SSLHandshakeException: no cipher suites in common."

 

 Environment:

 Linux/Windows

 

 Cause:

 During an upgrade the lower version of .xml files are retained. Therefore, customized settings are not carried forward.

 

 Resolution:

 This is due to a known Defect 375441/375443 as documented in the 10.1 release notes:

 Now after the upgrade,  webview-jetty-config.xml and em-jetty-config.xml files have protocols and certAlias properties. After upgrade, locate webview-jetty-config.xml and  em-jetty-config.xml in the backup folder. Copy the most recently customized values to config/webview-jetty-config.xml and config/em-jetty-config.xml respectively.

 

 Additional Information:

 https://docops.ca.com/ca-apm/10-1/en/ca-apm-release-notes/fixed-issues

http://www.ca.com/us/support/ca-support-online/product-content/knowledgebase-articles/TEC1342969.aspx  -- In APM 10.x what is the significance of the new SSL connector property "certAlias" in the Jetty web server config file for the EM Web Server.