Troubleshooting
Problem
New routes are rejected when certificates are manually changed. This happens when there is a mismatch between the certificate and its corresponding key. Another reason for this failure is if the key file has been encrypted with a pass-phrase. IBM Maximo Application Suite does not have a way to handle a key file encrypted with a pass-phrase.
Similar error messages can be seen:
Symptom
Routes are rejected when certificates are manually changed.
Cause
This happens when there is a mismatch between the certificate and its corresponding key. Another reason for this failure is if the key file has been encrypted with a pass-phrase. IBM Maximo Application Suite does not have a way to handle a key file encrypted with a pass-phrase.
Resolving The Problem
First thing to check when seeing the issue is to check if the certificate and the key match. Compare the md5 output from below commands and check if they match:
Command to get md5 for certificate
openssl x509 -noout -modulus -in tls.crt | openssl md5
Command to get md5 for key
openssl rsa -noout -modulus -in tls.key | openssl md5
If there is a pass-phrase set on the tls.key file, create a new tls.key file from the encrypted file.
openssl rsa -in tls.key -out tlsnp.key
Use the tlsnp.key file in IBM Maximo Application Suite and after everything is ok make sure you remove it.
Related Information
Document Location
Worldwide
[{"Type":"MASTER","Line of Business":{"code":"LOB59","label":"Sustainability Software"},"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SSRHPA","label":"IBM Maximo Application Suite"},"ARM Category":[{"code":"a8m3p000000hAeeAAE","label":"Maximo Application Suite-\u003ECore"}],"ARM Case Number":"","Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"8.10.0;8.9.0"}]
Was this topic helpful?
Document Information
Modified date:
13 April 2023
UID
ibm16983200