Creating IDM Roles Collector using the Identity Manager AE Permission Collector Template

I am facing SSL Handshake issue while trying to test the connection but all the certificate and everything is valid .

[INFO] 2024-09-02 14:09:56.575 [com.netiq.daas.daaservice.util.Service] [DAAS] Service 'TESTCONN_RAND_ID_70682ef5-23bb-4c19-92ea-a8a6054dee32' connector information: JAR: 'opt/netiq/idm/apps/tomcat/webapps/daas/WEB-INF/lib/daas-idmservice-4.1.11.0000.jar', VERSION: '4.1.11.0000' [INFO] 2024-09-02 14:09:56.852 [com.netiq.daas.idmservice.IDMService] [DAAS] Received service shutdown from DaaS [SEVERE] 2024-09-02 14:09:57.183 [com.netiq.iac.server.rest.ConnectionService] [IG-SERVER] Test Connection error: DaaS connector returned error (489): Target system error: Exception during User Application connection test: class javax.net.ssl.SSLHandshakeException [INFO] 2024-09-02 14:22:55.019 [com.netiq.daas.daaservice.util.Service] [DAAS] Service 'TESTCONN_RAND_ID_a254ae05-86ac-4b6f-bb39-1a08bad3a562' connector information: JAR: 'opt/netiq/idm/apps/tomcat/webapps/daas/WEB-INF/lib/daas-idmservice-4.1.11.0000.jar', VERSION: '4.1.11.0000' [INFO] 2024-09-02 14:22:55.283 [com.netiq.daas.idmservice.IDMService] [DAAS] Received service shutdown from DaaS [SEVERE] 2024-09-02 14:22:55.508 [com.netiq.iac.server.rest.ConnectionService] [IG-SERVER] Test Connection error: DaaS connector returned error (489): Target system error: Exception during User Application connection test: class javax.net.ssl.SSLHandshakeException [INFO] 2024-09-02 14:26:26.195 [com.netiq.daas.daaservice.util.Service] [DAAS] Service 'TESTCONN_RAND_ID_2145ed21-386a-4328-a06b-2c41b7a42dc3' connector information: JAR: 'opt/netiq/idm/apps/tomcat/webapps/daas/WEB-INF/lib/daas-idmservice-4.1.11.0000.jar', VERSION: '4.1.11.0000' [INFO] 2024-09-02 14:26:26.476 [com.netiq.daas.idmservice.IDMService] [DAAS] Received service shutdown from DaaS [SEVERE] 2024-09-02 14:26:26.723 [com.netiq.iac.server.rest.ConnectionService] [IG-SERVER] Test Connection error: DaaS connector returned error (489): Target system error: Exception during User Application connection test: class javax.net.ssl.SSLHandshakeException [INFO] 2024-09-02 14:27:08.740 [com.netiq.daas.daaservice.util.Service] [DAAS] Service 'TESTCONN_RAND_ID_3b89c47b-9be7-4490-ad16-04285ce76303' connector information: JAR: 'opt/netiq/idm/apps/tomcat/webapps/daas/WEB-INF/lib/daas-idmservice-4.1.11.0000.jar', VERSION: '4.1.11.0000' [INFO] 2024-09-02 14:27:09.017 [com.netiq.daas.idmservice.IDMService] [DAAS] Received service shutdown from DaaS [SEVERE] 2024-09-02 14:27:09.253 [com.netiq.iac.server.rest.ConnectionService] [IG-SERVER] Test Connection error: DaaS connector returned error (489): Target system error: Exception during User Application connection test: class javax.net.ssl.SSLHandshakeException [INFO] 2024-09-02 14:27:34.149 [com.netiq.daas.daaservice.util.Service] [DAAS] Service 'TESTCONN_RAND_ID_aff51cb0-d7be-440f-9214-aba7007aa390' connector information: JAR: 'opt/netiq/idm/apps/tomcat/webapps/daas/WEB-INF/lib/daas-idmservice-4.1.11.0000.jar', VERSION: '4.1.11.0000' [INFO] 2024-09-02 14:27:34.430 [com.netiq.daas.idmservice.IDMService] [DAAS] Received service shutdown from DaaS [SEVERE] 2024-09-02 14:27:34.668 [com.netiq.iac.server.rest.ConnectionService] [IG-SERVER] Test Connection error: DaaS connector returned error (489): Target system error: Exception during User Application connection test: class javax.net.ssl.SSLHandshakeException [INFO] 2024-09-02 14:29:49.591 [com.netiq.daas.daaservice.util.Service] [DAAS] Service 'TESTCONN_RAND_ID_2e25aedc-9241-4001-a9bf-6b246ce42076' connector information: JAR: 'opt/netiq/idm/apps/tomcat/webapps/daas/WEB-INF/lib/daas-idmservice-4.1.11.0000.jar', VERSION: '4.1.11.0000' [INFO] 2024-09-02 14:29:49.871 [com.netiq.daas.idmservice.IDMService] [DAAS] Received service shutdown from DaaS [SEVERE] 2024-09-02 14:29:50.133 [com.netiq.iac.server.rest.ConnectionService] [IG-SERVER] Test Connection error: DaaS connector returned error (489): Target system error: Exception during User Application connection test: class javax.net.ssl.SSLHandshakeException

Can anyone guide me with the steps to resolve this issue .

Parents Reply
  • 0   in reply to   

    Hello,
       More information should be available in the logs

    Typical reasons are:
    DNS name of the LDAP or ID Apps server does not match the value in the certificate
    The certificate has expired
    The certificate does not meet encryption level


    Sincerely,
    Steven Williams
    Principal Enterprise Architect
    OpenText Cybersecurity

Children
  • 0 in reply to   

    No more information I found in  catalina.out logs .

    This is DEV Environment in IGA 4.2 :-

    We have the LDAP host server certificate same as the User App Provisioning URL server certificate and both are valid certificate .

    But when trying to test the connection giving the SSL handshake error .

    LDAP Server Certificate:-Valid Server Certificate

    User App Certificate:- Pointing to the Same LDAP server 

    This is PROD Environment in IGA 3.7.3:-

    We have the LDAP host certificate different from the USER App Provisioning URL server certificate and it is working fine .

    User App Base Provisioning URL :- 

    LDAP server certificate:-Valid Server Certificate 

    User App certificate:-Valid LB certificate