App visibility agent unable to perform handshake with the Portal

Version 1
    Share This:

    This document contains official content from the BMC Software Knowledge Base. It is automatically updated when the knowledge article is modified.


    PRODUCT:

    TrueSight App Visibility Agent


    COMPONENT:

    TrueSight App Visibility Agent



    QUESTION:

    App visibility agent not working when Java is blocking SSLv3.


    ANSWER:

    Log files indicate that no handshake is done between agents and server since server is configured to use only secured communication protocols TLS 1.0, 1.1, 1.2 (blocking out SSLv3):
     

    2015/12/11 11:34:48:665 ICT [INFO] AGENT_INFO - Thread[AGENT PortalConnection Thread,5,main]-637812916 - Shaking hands with Portal at 'https://<portalAddress>:8100', information is: AgentInfoMessage{platform='Java', serverType='WebSphere', serverID='SERVER-ID-AGENT:servername_application', serverIP='10.15.1.62', serverPort=-1, serverHostName='SERVERNAME', serverDomainName='null', serverFQDN='servername.exampledomain.com', serverDisplayName='servername.exampledomain.com-servername_application', agentSessionId='null'}  2015/12/11 11:34:48:890 ICT [WARN] com.bmc.aps.agent.net.RestClient - Thread[AGENT PortalConnection Thread,5,main]-637812916 - Cannot send rest request to url 'https://'servername.exampledomain.com:8100/portal/rest/admin/agents'. <javax.net.ssl.SSLHandshakeException: Remote host closed connection during handshake> javax.net.ssl.SSLHandshakeException: Remote host closed connection during handshake
      
    Even when SSLv3 was enabled as communication protocol for the agent and the portal (by modifying the properties files), this error keeps showing up. This means it's still being blocked by JAVA itself: 

    http://www.oracle.com/technetwork/java/javase/8u31-relnotes-2389094.html#newft 

    To solve this issue, perform the following steps: 

    Step 1) On the App Visibility Portal server, go to the <installation dir>/ADOP_JRE/lib/security directory and make a backup copy of the file called java.security 

    Step 2) Edit the original file called java.security located in the <installation dir>/ADOP_JRE/lib/security directory 

    Step 3) Find the following line in this file: 

    jdk.tls.disabledAlgorithms 

    and remove SSLv3. 

    Step 4) Save the file 

    Step 5) Restart the App Visibility Portal, App Visibility Collector, App Visibility Proxy (if one is installed), and the App Visibility Agents 

     


    Article Number:

    000100191


    Article Type:

    FAQ/Procedural



      Looking for additional information?    Search BMC Support  or  Browse Knowledge Articles