Home

Results 1 to 7 of 7

Thread: ZCC Login failed after Migration from 11.3.1 FRU1 to 11.3.2

Threaded View

  1. #1
    Join Date
    Jan 2009
    Posts
    2

    Exclamation ZCC Login failed after Migration from 11.3.1 FRU1 to 11.3.2

    Hey,

    System: 6 Primary Server Sless 11 SP3
    LDAP: EDIR
    Primary: 11.3.2
    Sats: 11.3.1 FRU1

    After Migration from 11.3.1 FRU1 to 11.3.2

    i'll try to login in ZCC

    Message ZCC
    Error: Login Error: com.novell.zenworks.datamodel.exceptions.InternalD ataModelException: javax.net.ssl.SSLHandshakeException: java.security.cert.CertificateException: Certificates does not conform to algorithm constraints
    See the ZENworks Control Center log file (zcc.log) for the full stack trace.

    I tryed with default admin and see that the USERSource is not reachable.
    I take a look in the configuration / usersource and there is an Error like: Unable to read contexts. One or more of your connections don't support non-SSL.

    ZCC.log sayed
    [javax.net.ssl.SSLHandshakeException: java.security.cert.CertificateException: Certificates does not conform to algorithm constraints] [] [com.novell.zenworks.datamodel.exceptions.InternalD ataModelException] [ZENServer]
    [DEBUG] [12/30/2014 09:54:02.417] [3547] [ZENServer] [72] [zenworks] [ZCC] [] [Form.java CSRF TOKEN:d1b804076c63e7393af1a72442ced4b5 for the PageId:authoritativeSourceDetails] [] [] [] [ZENServer]
    [DEBUG] [12/30/2014 09:54:03.144] [3547] [ZENServer] [85] [zenworks] [ZCC] [] [QuickTask build tasks called in createChildControls, normal flow before ajax] [] [] [] [ZENServer]
    [DEBUG] [12/30/2014 09:54:03.348] [3547] [ZENServer] [69] [zenworks] [ZCC] [] [com.novell.zenworks.datamodel.exceptions.InternalD ataModelException: javax.net.ssl.SSLHandshakeException: java.security.cert.CertificateException: Certificates does not conform to algorithm constraints
    at com.novell.zenworks.datamodel.services.Certificate ManagerImpl.getCertificates(CertificateManagerImpl .java:179)
    at com.novell.zenworks.datamodel.utils.ldap.LDAPUtil. validateCertificateExpiry(LDAPUtil.java:1162)
    at com.novell.zenworks.datamodel.utils.ldap.LDAPUtil. getLDAPConnectionInfo(LDAPUtil.java:774)
    at com.novell.zenworks.datamodel.utils.ldap.LDAPUtil. getLDAPConnectionInfo(LDAPUtil.java:559)
    at com.novell.zenworks.datamodel.utils.ldap.LDAPUtil. getLDAPConnectionInfo(LDAPUtil.java:386)
    at com.novell.zenworks.datamodel.utils.ldap.LDAPUtil. getLDAPConnectionInfo(LDAPUtil.java:359)
    at com.novell.zenworks.datamodel.utils.ldap.LDAPUtil. getLDAPConnectionInfo(LDAPUtil.java:325)
    at com.novell.zenworks.datamodel.utils.ldap.LDAPUtil. getLDAPConnectionInfo(LDAPUtil.java:311)
    at com.novell.zenworks.core.web.internal.UserSourceSt atusAJAX.getImageData(UserSourceStatusAJAX.java:77 )
    at com.novell.web.ajax.ImageAJAX.service(ImageAJAX.ja va:38)
    at com.novell.web.ajax.AJAXDataHandler.service(AJAXDa taHandler.java:40)
    at com.novell.web.AjaxServlet.serviceImpl(AjaxServlet .java:100)
    at com.novell.web.AjaxServlet.service(AjaxServlet.jav a:74)
    at com.novell.zenworks.fw.web.internal.ZENworksAjaxSe rvlet.service(ZENworksAjaxServlet.java:47)
    at javax.servlet.http.HttpServlet.service(HttpServlet .java:727)
    at org.apache.catalina.core.ApplicationFilterChain.in ternalDoFilter(ApplicationFilterChain.java:303)
    at org.apache.catalina.core.ApplicationFilterChain.do Filter(ApplicationFilterChain.java:208)
    at com.patchlink.sapphire.web.pages.vulnerability.ses sion.HibernateSessionFilter.doFilter(HibernateSess ionFilter.java:75)
    at org.apache.catalina.core.ApplicationFilterChain.in ternalDoFilter(ApplicationFilterChain.java:241)
    at org.apache.catalina.core.ApplicationFilterChain.do Filter(ApplicationFilterChain.java:208)
    at org.apache.catalina.core.StandardWrapperValve.invo ke(StandardWrapperValve.java:220)
    at org.apache.catalina.core.StandardContextValve.invo ke(StandardContextValve.java:122)
    at org.apache.catalina.authenticator.AuthenticatorBas e.invoke(AuthenticatorBase.java:501)
    at org.apache.catalina.core.StandardHostValve.invoke( StandardHostValve.java:171)
    at com.googlecode.psiprobe.Tomcat70AgentValve.invoke( Tomcat70AgentValve.java:39)
    at org.apache.catalina.valves.ErrorReportValve.invoke (ErrorReportValve.java:103)
    at org.apache.catalina.core.StandardEngineValve.invok e(StandardEngineValve.java:116)
    at com.novell.zenworks.tomcat.ZENRequestValve.invoke( ZENRequestValve.java:1346)
    at org.apache.catalina.connector.CoyoteAdapter.servic e(CoyoteAdapter.java:408)
    at org.apache.coyote.http11.AbstractHttp11Processor.p rocess(AbstractHttp11Processor.java:1070)
    at org.apache.coyote.AbstractProtocol$AbstractConnect ionHandler.process(AbstractProtocol.java:611)
    at org.apache.tomcat.util.net.JIoEndpoint$SocketProce ssor.run(JIoEndpoint.java:316)
    at java.util.concurrent.ThreadPoolExecutor.runWorker( ThreadPoolExecutor.java:1145)
    at java.util.concurrent.ThreadPoolExecutor$Worker.run (ThreadPoolExecutor.java:615)
    at org.apache.tomcat.util.threads.TaskThread$Wrapping Runnable.run(TaskThread.java:61)
    at java.lang.Thread.run(Thread.java:745)
    Caused by: javax.net.ssl.SSLHandshakeException: java.security.cert.CertificateException: Certificates does not conform to algorithm constraints
    at sun.security.ssl.Alerts.getSSLException(Alerts.jav a:192)
    at sun.security.ssl.SSLSocketImpl.fatal(SSLSocketImpl .java:1884)
    at sun.security.ssl.Handshaker.fatalSE(Handshaker.jav a:276)
    at sun.security.ssl.Handshaker.fatalSE(Handshaker.jav a:270)
    at sun.security.ssl.ClientHandshaker.serverCertificat e(ClientHandshaker.java:1439)
    at sun.security.ssl.ClientHandshaker.processMessage(C lientHandshaker.java:209)
    at sun.security.ssl.Handshaker.processLoop(Handshaker .java:878)
    at sun.security.ssl.Handshaker.process_record(Handsha ker.java:814)
    at sun.security.ssl.SSLSocketImpl.readRecord(SSLSocke tImpl.java:1016)
    at sun.security.ssl.SSLSocketImpl.performInitialHands hake(SSLSocketImpl.java:1312)
    at sun.security.ssl.SSLSocketImpl.startHandshake(SSLS ocketImpl.java:1339)
    at sun.security.ssl.SSLSocketImpl.startHandshake(SSLS ocketImpl.java:1323)
    at com.novell.zenworks.security.certificates.Certific ateUtility.getCertChain(CertificateUtility.java:12 1)
    at com.novell.zenworks.datamodel.services.Certificate ManagerImpl.getCertificates(CertificateManagerImpl .java:175)
    ... 35 more
    Caused by: java.security.cert.CertificateException: Certificates does not conform to algorithm constraints
    at sun.security.ssl.AbstractTrustManagerWrapper.check AlgorithmConstraints(SSLContextImpl.java:946)
    at sun.security.ssl.AbstractTrustManagerWrapper.check AdditionalTrust(SSLContextImpl.java:872)
    at sun.security.ssl.AbstractTrustManagerWrapper.check ServerTrusted(SSLContextImpl.java:814)
    at sun.security.ssl.ClientHandshaker.serverCertificat e(ClientHandshaker.java:1421)

    SR has been created.
    Any Tipps /Hints for me ?
    Thank You
    Last edited by starki; 30-Dec-2014 at 10:03 AM.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •