• Visitors can check out the Forum FAQ by clicking this link. You have to register before you can post: click the REGISTER link above to proceed. To start viewing messages, select the forum that you want to visit from the selection below. View our Forum Privacy Policy.
  • FREE workshop: Preparing contractors for Autumn : Weds 29th Sep at 7.15pm. More details here.

Oracle middleware issue - Cannot connect to Node Manager. : General SSLEngine problem

Collapse
X
  •  
  • Filter
  • Time
  • Show
Clear All
new posts

    Oracle middleware issue - Cannot connect to Node Manager. : General SSLEngine problem

    We're running Oracle Middleware on Windows Server 2012 R2. Oracle version is Oracle Database 12c Enterprise Edition Release 12.1.0.2.0 - 64bit Production.

    When trying to run the Middleware via script we're seeing the following error - any ideas? Unfortunately, we no longer have an Oracle support personnel available, hence we're struggling to resolve:

    ====== Mon 07/12/2021 7:08:45.74 ======
    Initializing WebLogic Scripting Tool (WLST) ...
    Welcome to WebLogic Server Administration Scripting Shell
    Type help() for help on available commands

    === Connect to NodeManager
    Connecting to Node Manager ...
    <Jul 12, 2021 7:10:05 AM CEST> <Info> <Security> <BEA-090905> <Disabling the CryptoJ JCE Provider self-integrity check for better startup performance. To enable this check, specify -Dweblogic.security.allowCryptoJDefaultJCEVerificat ion=true.>
    <Jul 12, 2021 7:10:05 AM CEST> <Info> <Security> <BEA-090906> <Changing the default Random Number Generator in RSA CryptoJ from ECDRBG128 to HMACDRBG. To disable this change, specify -Dweblogic.security.allowCryptoJDefaultPRNG=true.>
    <Jul 12, 2021 7:10:05 AM CEST> <Info> <Security> <BEA-090909> <Using the configured custom SSL Hostname Verifier implementation: weblogic.security.utils.SSLWLSHostnameVerifier$Nul lHostnameVerifier.>
    This Exception occurred at Mon Jul 12 07:10:07 CEST 2021.
    javax.net.ssl.SSLHandshakeException: General SSLEngine problem
    Error: Error occurred while performing nmConnect : Cannot connect to Node Manager. : General SSLEngine problem
    Use dumpStack() to view the full stacktrace :

    Exiting WebLogic Scripting Tool.



    Thanks
    Moose

    #2
    Turn on debug logging with:

    -Djavax.net.debug=ssl,handshake

    it will give you copious information about where/what is failing in the handshake.

    Comment


      #3
      probably an expired certificate. Or an untrusted one. Can you point a browser at the listening socket and see what the cert is (don't use IE)?
      See You Next Tuesday

      Comment


        #4
        If you want to probe the tls on the server, try testssl.sh.

        Comment


          #5
          Thanks for the replies. It was indeed a certificate issue.

          Validity: [From: Fri Jul 08 17:01:06 CEST 2016,
          To: Wed Jul 07 17:01:06 CEST 2021]

          Now we just need to work out how to fix it.

          Thanks again
          Moose

          Comment


            #6
            Originally posted by Moose423956 View Post
            Thanks for the replies. It was indeed a certificate issue.

            Validity: [From: Fri Jul 08 17:01:06 CEST 2016,
            To: Wed Jul 07 17:01:06 CEST 2021]

            Now we just need to work out how to fix it.

            Thanks again
            Moose
            and that is the problem with long expiry certs. When you need to renew it nobody knows how any more

            See You Next Tuesday

            Comment


              #7
              Yup. Anything more than a year is silly for several reasons, hence the move to a maximum period of one year by CAs and browsers etc.

              Comment

              Working...
              X