Problem:
After the 10.1 upgrade, we set up EM and WebView jetty servers for SSL using a company's custom certificate as done in previous CA APM version. But the authentication fails and EM log shows an exception error, "SSLHandshakeException: no cipher suites in common."
Environment:
Linux/Windows
Cause:
During an upgrade the lower version of .xml files are retained. Therefore, customized settings are not carried forward.
Resolution:
This is due to a known Defect 375441/375443 as documented in the 10.1 release notes:
Now after the upgrade, webview-jetty-config.xml and em-jetty-config.xml files have protocols and certAlias properties. After upgrade, locate webview-jetty-config.xml and em-jetty-config.xml in the backup folder. Copy the most recently customized values to config/webview-jetty-config.xml and config/em-jetty-config.xml respectively.
Additional Information:
https://docops.ca.com/ca-apm/10-1/en/ca-apm-release-notes/fixed-issues
http://www.ca.com/us/support/ca-support-online/product-content/knowledgebase-articles/TEC1342969.aspx -- In APM 10.x what is the significance of the new SSL connector property "certAlias" in the Jetty web server config file for the EM Web Server.