Domino on Linux/Unix, Troubleshooting, Best Practices, Tips and more ...

alt

Daniel Nashed

Domino Server Controller does not connect after upgrade to Java6SR16FP20

Daniel Nashed – 16 February 2016 17:33:18
The IBM Java Team disabled MD5 in there latest patch to tighten security. But the Server Console currently can only use MD5 right now.
So by this intentionally change by the IBM Java Team the Domino Console cannot connect any more.


For now to have the Server Controller local and remotely working again you have to re-enable MD5.

This is a similar issue than what we had when the IBM Java team disabled SSLV3 some time ago.


There are two lines that you have to change in the ..jvm/lib/security/java.security file.


You have to remove MD5 from the disabled algorithms for now:


jdk.certpath.disabledAlgorithms=MD2,
MD5, RSA keySize < 1024
jdk.tls.disabledAlgorithms=SSLv3, RC4,
MD5withRSA, DH keySize < 768


There is currently no other work-around for Windows. On Linux you could use the "monitor" command when using my start script and disable the server controller.


-- Daniel

Links

    Archives


    • [HCL Domino]
    • [Domino on Linux]
    • [Nash!Com]
    • [Daniel Nashed]