BCAAA debug log message: The client and server cannot communicate, because they do not possess a common algorithm


<< Back to Knowledge Search

Solution

Overview

BCAAA debug message:  The client and server cannot communicate, because they do not possess a common algorithm
You are attempting to setup secure Proxy to BCAAA communications using SSL and:

- Attempting to browse users or groups in VPM shows the error: cannot communicate to agent

and

- The BCAAA debug logs show the error "The client and server cannot communicate, because they do not possess a common algorithm"

Cause
Resolution

This is caused when the BCAAA server has the local security policy FIPS compliant algorithms enabled.  The instructions below pertain to Microsoft Windows server 2003.

  1. On the BCAAA server run "secpol.msc"
  2. Navigate to Local Policies and Security Options.
  3. Double click System Cryptography: Use FIPS compliant algorithms for encryption, hashing, and signing.
  4. Disable the setting, and then click Apply.
  5. Restart the BCAAA service.
Workaround
Additional Information
Bug Number
InQuira Doc IdKB4082
Attachment

Article Feedback

Hide Properties
First Published      10/01/2014
Last Modified      10/01/2014
Last Published      10/01/2014
Article Audience
Product      ProxySG
Topic      Authentication, BCAAA, Errors / Event Logs / Alerts, SSL / HTTPS
Article Number      000008069
Summary     
Was this helpful?
Comments:
 
Previous MonthNext Month
SunMonTueWedThuFriSat