Dear Members,
We are trying to do third party integration with RSA so that RSA tokens values should be passed to RSA server for two factor authentication. For that we have downloaded RSA authapi-8.5.jar, cryptoj-6.1.jar.
I am getting error "Could not generate DH keypair"for a HP Unix environment with JRE 1.6.0.07 version. We are trying to integrate with RSA authentication agent using authentication agent authapi-8.5 jar.
We are able to do handshake with RSA server but while trying to call authentication service it’s always throwing the error “Couldn’t generate DH key pair”. I have gone through various links on internet to fix this issue and have installed JCE with unlimited strength and have put latest local_policy.jar and US_export_policy.jar. but still I am facing the issue
FYR I am attaching my logs below from our API call log.
{updateServerAccessTime} serviceHostName = 172.xx.xx.xx, accessTime=1430642883818
[2015-05-03 12:48:03,818] DEBUG HTTP Handler 172.xx.xx.xx - initializeConnection: direct connection (no proxy): http://172.xx.xx.xx:5500/Services/MessageKeyService
[2015-05-03 12:48:03,820] DEBUG HTTP Handler 172.xx.XX.XXX - processRequest: MSGKEY response: <?xml version='1.0' encoding='UTF-8'?><key:KeyResponse xmlns:xenc10=“XML Encryption Syntax and Processing” xmlns:stat=“http://www.rsa.com/schemas/2008/05/CommonAPI/status” xmlns:key=“http://www.rsa.com/schemas/2008/05/CommonAPI/keys” xmlns:ds=“XML-Signature Syntax and Processing” InResponseTo=“c8a539d1705e581f” ID=“a9148641f099a820”><stat:Status Status=“IN_PROCESS”/><key:ResponseContext ID=“XXXXXXXXXXXXXd1YP3fLp0QxBLNqhXXXXXXnpvdYptbDRtV!1081713338!143064XXXXX”/></key:KeyResponse>
[2015-05-03 12:48:03,820] DEBUG HTTP Handler 172.xx.xx.xx - {updateServerResponseTime} serverLBInfoMap: Key Values: 172.xx.XX.XX
[2015-05-03 12:48:03,820] DEBUG HTTP Handler 172.xx.xx.xx - {updateServerResponseTime} serviceHostName = 172.xx.xx.xx, responseTime=2
[2015-05-03 12:48:03,820] DEBUG HTTP Handler 172.xx.xx.xx - server response: <?xml version='1.0' encoding='UTF-8'?><key:KeyResponse xmlns:xenc10=“XML Encryption Syntax and Processing” xmlns:stat=“http://www.rsa.com/schemas/2008/05/CommonAPI/status” xmlns:key=“http://www.rsa.com/schemas/2008/05/CommonAPI/keys” xmlns:ds=“XML-Signature Syntax and Processing” InResponseTo=“c8a539d1705e581f” ID=“a9148641f099a820”><stat:Status Status=“IN_PROCESS”/><key:ResponseContext ID=“XXXXQmTHvJJhL17d1YP3fLp0QxXXXXXXXJnpvdYptbDRtV!1081713338!1430XXX77053”/></key:KeyResponse>
[2015-05-03 12:48:03,822] DEBUG HTTP Handler 172.xx.xx.xx - server in-process:
[2015-05-03 12:48:03,822] DEBUG HTTP Handler 172.xx.xx.xx - performing client key exchange of 0 bytes
[2015-05-03 12:48:03,822] ERROR HTTP Handler 172.xx.xx.xx - Error in processing Authn request: Could not generate DH keypair
[2015-05-03 12:48:03,822] ERROR HTTP Handler 172.xx.xx.xx - Error in initial AuthnReq/Rsp for serverTime.Error in processing Authn request: Could not generate DH keypair
Any pointers/help will be really appreciated.