on 08-04-2010 9:15 PM
Hi Experts ,
I am facing some very weird issue of getting below error whenever I try to enable the Encryption in my Receiver AS2 Seeburger Adapter :
Message processing failed. Cause: javax.resource.ResourceException: Fatal exception: javax.resource.ResourceException: SEEBURGER AS2: AS2 Adapter failure # java.lang.Exception: AS2 message composition failed: com.seeburger.ksm.cryptoapi.exception.CryptoApiException: Cannot authenticate the user., SEEBURGER AS2: AS2 Adapter failure # java.lang.Exception: AS2 message composition failed: com.seeburger.ksm.cryptoapi.exception.CryptoApiException: Cannot authenticate the user.
But the moment I send data without signing and encryption it goes well. We have tried placing certificates in receiver agreement and in key store.
Thanks
Abhishek
Prateek ,
Thanks we were able to identify the user to be mentioned but now we are facing below error while using certificates with SH1withRSA Encryption and in receiver channel Encryption algorithm as 3DES :
Message processing failed. Cause: javax.resource.ResourceException: Fatal exception: javax.resource.ResourceException: SEEBURGER AS2: AS2 Adapter failure # java.lang.Exception: AS2 message composition failed: java.io.IOException: org.bouncycastle.cms.CMSException: key inappropriate for algorithm., SEEBURGER AS2: AS2 Adapter failure # java.lang.Exception: AS2 message composition failed: java.io.IOException: org.bouncycastle.cms.CMSException: key inappropriate for algorithm.
The problem doesnt ends here ... while our partner trying to send us data to the URL we have provided its getting 403 Forbidden Error. We have tried resolving the steps which were given in manual but again the sxase is same.
URL : http://server:port/SeeburgerAS2/AS2Server
Any inputs if you can provide on the above 2 errors .
Thanks
Abhishek
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Abhishek,
All you have to do is ask your Basis contact to have max java Cryptography on the server...because PI 7.1 will need higher cryptography...because the algorithms or scripts on AS2 adapter have changed on Seeburger side...I'm not sure if Seeburger is supporting EHP1 yet...it might be supporting so you need to ask them if they have any hot fixes in place for PI EHP1...because "bouncycastle" indicates either you are on low java cryptography or need a hot fix patch from seeburger if on newer version (as is in your case)...
Thanks,
Srinivas
CMSException: key inappropriate for algorithm.
Either the certificate imported in incorrect or the communication channel parameters doesn't comply with the certificate. Ask the client about the encryption algo to be used.
The problem doesnt ends here ... while our partner trying to send us data to the URL we have provided its getting 403 Forbidden Error
This is not related to your "key inappropriate for algorithm" problem. So basically you have two problems to solve. Check for the steps to resolve 403 error:
/people/milan.thaker/blog/2009/08/31/403-forbidden-error-in-a-secured-b2b-edi-xi-connection
@Srinivas
I'm not sure if Seeburger is supporting EHP1 yet...
It is supported. I am sure
it might be supporting so you need to ask them if they have any hot fixes in place for PI EHP1
There is no hot fix. You have to use Seeburger 2.1x version.
Regards,
Prateek
Prateek,
Thanks. We checked with the partner and as per them we are configuring the Encrypt as 3DES but still getting the same error. I saw many posts which talk about checking the jar files for seeburger AS2 adapter. Could you please provide the names of those jars or any link to document which contains that jar files name for SAP PI 7.1 seeburger installation. Thanks for your reponse.
Thanks
Abhishek
Prateek,
Thanks again. We asked our Basis and they installed the latest Crypto files into our PI 7.1 EHP1 Server. But again we are facing the same bouncycastle exception. We are nowhere able to find the resolution for this kind of exception. Can you please provide us the names of the jars which are required for this version of PI.
Error : Message processing failed. Cause: javax.resource.ResourceException: Fatal exception: javax.resource.ResourceException: SEEBURGER AS2: AS2 Adapter failure # java.lang.Exception: AS2 message composition failed: java.io.IOException: org.bouncycastle.cms.CMSException: key inappropriate for algorithm., SEEBURGER AS2: AS2 Adapter failure # java.lang.Exception: AS2 message composition failed: java.io.IOException: org.bouncycastle.cms.CMSException: key inappropriate for algorithm.
When we searched for this error it talks about some Secured Jars to be present. We also provided all the permissions to the policy files.
Thanks
Abhishek
Hi
please follow the below steps to solve the AS2 Crypto problem
Download the ZIp file from the below url
http://java.sun.com/javase/downloads/index_jdk5.jsp > Other Downloads > Java Cryptography Extension (JCE) Unlimited Strength Jurisdiction Policy Files 5.0.
Copy the local_policy.jar and US_export_policy.jar from the ZIp file and paste it in the following locations
C:\Program Files\Java\jdk1.5.0_21\jre\lib\security
D:\usr\sap\SID\DVEBMGS00\exe\sapjvm_5\jre\lib\security
D:\usr\sap\SID\DVEBMGS00\j2ee\JSPM\sapjvm\jre\lib\security
D:\usr\sap\SID\SYS\exe\jvm\NTAMD64\sapjvm_5.1.052\sapjvm_5\jre\lib\security
Restart the Java Engine.
Thanks
Kiran Nekkanti
HI,
My apologies! I really didn´t see that there is a second page on this thread history. Just when I asked for the solution I perceived the second page.
Regards!
Rodrigo Aoki
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hello,
How do you resolve the bouncycastle key inappropriate error?
SEEBURGER AS2: AS2 Adapter failure \# java.lang.Exception: AS2 message composition failed: java.io.IOException: org.bouncycastle.cms.CMSException: key inappropriate for algorithm.
I update the JVM to 5.1.059 and checked the JCE files but the error persists (similar to the last post).
Regards,
Rodrigo Aoki
SAP Basis
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi,
Make sure that the user provided exists, is correct and is not locked. Also recheck the authentication certificate settings.
Regards,
Neetesh
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
You haven't mentioned your PI version. If you have Visual Admin, then navigate to Connector Container service -> Connector and goto seeburger.com/com.seeburger.xi.AS2. There you need to provide Seeburger username and password. The username should have SAP_J2EE_ADMIN authorization.
Regards,
Prateek
User | Count |
---|---|
90 | |
10 | |
10 | |
10 | |
7 | |
7 | |
6 | |
5 | |
4 | |
3 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.