tags:

views:

26

answers:

2
Q: 

Websphere 7 SSL error that never goes away no matter what I do.

Ok I install Websphere 7.0 and RAD 7.5. Update WAS to fix pack 11 and update RAD. 7.5.5. lastest updates..etc...

I create a server profile.

I start the server.

I turn on global security and use LDAP. (something I have done a billion times)

I don't even attempt to publish an application.

The server constantly debugs out this message every two minutes.

How do you make it stop? I have tried making new keys doesn't work, I blow away the profile and make a new one. Nothing works. Nothing. The server is running at 400 mb without an application installed. Is this supposed to be normal? 400mb with no app published?

The server profile creation wizard forces this SSL nonsense into the config.

What's really going on here?

I would love to utilize the latest server technology IBM has to offer but it seems to be broken right out of the box, out of the gate. 5 fix packs later and its still broken.

[8/25/10 8:12:44:896 CDT] 0000000b SSLHandshakeE E   SSLC0008E: Unable to initialize SSL connection.  Unauthorized access was denied or security settings have expired.  Exception is javax.net.ssl.SSLException: Unrecognized SSL message, plaintext connection?
 at com.ibm.jsse2.b.a(b.java:34)
 at com.ibm.jsse2.pc.a(pc.java:155)
 at com.ibm.jsse2.pc.unwrap(pc.java:104)
 at javax.net.ssl.SSLEngine.unwrap(SSLEngine.java:17)
 at com.ibm.ws.ssl.channel.impl.SSLConnectionLink.readyInbound(SSLConnectionLink.java:531)
 at com.ibm.ws.ssl.channel.impl.SSLConnectionLink.ready(SSLConnectionLink.java:291)
 at com.ibm.ws.tcp.channel.impl.NewConnectionInitialReadCallback.sendToDiscriminators(NewConnectionInitialReadCallback.java:214)
 at com.ibm.ws.tcp.channel.impl.NewConnectionInitialReadCallback.complete(NewConnectionInitialReadCallback.java:113)
 at com.ibm.ws.tcp.channel.impl.AioReadCompletionListener.futureCompleted(AioReadCompletionListener.java:165)
 at com.ibm.io.async.AbstractAsyncFuture.invokeCallback(AbstractAsyncFuture.java:217)
 at com.ibm.io.async.AsyncChannelFuture.fireCompletionActions(AsyncChannelFuture.java:161)
 at com.ibm.io.async.AsyncFuture.completed(AsyncFuture.java:138)
 at com.ibm.io.async.ResultHandler.complete(ResultHandler.java:204)
 at com.ibm.io.async.ResultHandler.runEventProcessingLoop(ResultHandler.java:775)
 at com.ibm.io.async.ResultHandler$2.run(ResultHandler.java:905)
 at com.ibm.ws.util.ThreadPool$Worker.run(ThreadPool.java:1550)

Could someone please create a Websphere-7.0 tag

A: 

Your app server is trying to establish a ssl connection on a port that is not ssl. An easy way to see it live is trying to access the admin console using http but using the ssl port. If you use the standard ports you can try this: http://localhost:9043/ibm/console/

svachon  2010-08-25 18:38:43
Thanks for trying but it really is just an issue caused by poor programming on the part of IBM. Occam's Razor actually applies in this situation. IBM FAIL I am sure they will fix this in some fix pack that won't be released for the next 3 years.
mugafuga  2010-08-25 19:31:29
A: 

I was wrong. Creating it from either way causes the issue. (running the pmt.bat or through the rad tool).

The real issue was not copying the global security stuff as a security domain.

Basically you go to Security > Security Domains > then click the Copy from Global Security option.

This is just crazy. Why not simply have the goofy wizard ask if you would like this to happen also??? IBM infuriates me.

mugafuga  2010-08-25 19:26:08
That is strange, I usually create my profiles from rad and do not have this problem. Clicking on "Run Profile Management Tool" in rad simply runs <rad sdp folder>/runtimes/base_v7/bin/ProfileManagement/bin/pmt.exe. like pmt.bat does. Perhaps you should think about opening a pmr.
svachon  2010-08-25 20:33:52

related questions

IBM Websphere OutOfMemoryException.
HTTP input filter like mod_security for WebSphere?
What is your favorite IDE for develop with Websphere Application Server?
Unmanaged Threads Spring Quartz Websphere Hibernate
How to get access to the Websphere 6.1 ant tasks from vanilla ant (not ws_ant)
Websphere with Classic ASP
NameSpaceBinding and wsadmin
Deploying Websphere Portals onto a 6.1 Server
How do you establish context and call an WebSphere EJB from the Sun JRE (not IBM)
Websphere 6.1 - Configuring Security
Does WebSphere ESB scale?
Force Https in Websphere 6.1
How do you compare Websphere Commerce with the rest of the ecommerce tools available in the market?
What tools are there for timed batch processes in J2EE?
track down file handle
Is there a good tutorial on Websphere 6.1 ND deployments?
using asynchbeans instead of native jdk threads
Java profiler for IBM JVM 1.4.2 (WebSphere 6.0.2)
Is there a simpler way to deploy to WebSphere?
WebSphere 6.1 generational gc default nursery size limit
How can I make "jconsole" work with Websphere 6.1?
Error ADMA5026E for WebSphere Application Server Network Deployment
What means the error SECJ0222E in WebSphere Application Server 5.1
What is called a Node in a WebSpere Network Deployment
Can someone give me a working example of a build.xml for an EAR that deploys in WebSphere 6