.png?width=180&height=32&name=NW%20Logo%20(2).png){kind=small}
Live test connection fails with peer not authenticated errors in RSA NetWitness 10.4.x
Issue
Live Test connection fails from SA GUI and throws below errors.SA.log:
Caused by: com.rsa.netwitness.cms.domain.model.exceptions.CmsException: javax.net.ssl.SSLPeerUnverifiedException: peer not authenticated
at com.rsa.netwitness.cms.impl.CmsClientImpl.doHttpGet(CmsClientImpl.java:1459)
at com.rsa.netwitness.cms.impl.CmsClientImpl.authenticateCMSUser(CmsClientImpl.java:331)
... 133 more
Caused by: javax.net.ssl.SSLPeerUnverifiedException: peer not authenticated
at com.rsa.netwitness.cms.impl.CmsClientImpl.doHttpGet(CmsClientImpl.java:1459)
at com.rsa.netwitness.cms.impl.CmsClientImpl.authenticateCMSUser(CmsClientImpl.java:331)
... 133 more
Caused by: javax.net.ssl.SSLPeerUnverifiedException: peer not authenticated
In putty, Live connection works using curl -v https://
Cause
Recently, Live CMS server migrated from TLS1 to TLS1.2 default algorithm. This TLS1 algorithm is part of java-1.7.0-openjdk-1.7.0.65-2.5.1.2.el6_5.x86_64 package. This issue is not observed in higher versions with java-1.8.0-openjdk-1.8.0.111-0.b15.el6_8.x86_64 package.Workaround
Please update Security Analytics to higher version which like 10.6.X version to get successful Live connection from SA GUI.
Product Details
RSA Product Set: Security AnalyticsRSA Product/Service Type: SA Live
RSA Version/Condition: 10.4.X
Summary
Recently, Live server migrated from TLS1 to TLS1.2 default algorithm which impacts Live connection for the lower versions of Security Analytics. This article outlines about workaround on Live connection.
Approval Reviewer Queue
RSA NetWitness Suite Approval Queue