Resolution
VigilEnt Security Agent for Oracle 2.0
fact
NetIQ Vulnerability Manager 5.5
symptom
The Oracle 2.0 agent no longer works.
symptom
JCE 1.2.1 that is shipped with the Oracle 2.0 agent expired on July 27, 2005.
symptom
Oracle agents register but the reports fail and produce an error in the VSMDBAgent.log.
symptom
First error in the VSMDBAgent.log:
java.lang.SecurityException: Cannot set up certs for trusted CAs
at javax.crypto.b.<clinit>([DashoPro-V1.2-120198])
at javax.crypto.Cipher.getInstance([DashoPro-V1.2-120198])
at com.pentasafe.DBAgent.AgentRegistry.decryptPrivPwd(DashoA8189)
at com.pentasafe.DBAgent.AgentRegistry.getEndpointConnectionPool(DashoA8189)
at com.pentasafe.DBAgent.CmdHandlerBase.ConnectEndpoint(DashoA8189)
at com.pentasafe.DBAgent.CmdHandlerBase.initial(DashoA8189)
at com.pentasafe.DBAgent.CmdHandlerBase.initial(DashoA8189)
at com.pentasafe.DBAgent.Reports.Oracle.GTORASTATUS.initial(DashoA8189)
at com.pentasafe.mk.protocol.StreamToTaskRequest.a(DashoA8189)
at com.pentasafe.mk.protocol.StreamToTaskRequest.process(DashoA8189)
at com.pentasafe.mk.select.SocketProcess.doProcess(DashoA8189)
at com.pentasafe.mk.select.SocketProcess.doRun(DashoA8189)
at com.pentasafe.mk.select.SocketProcess.run(DashoA8189)
at com.pentasafe.mk.threads.WorkerThread.run(DashoA8189)
Every run after the first displays the following error:
java.lang.NoClassDefFoundError
at javax.crypto.Cipher.getInstance([DashoPro-V1.2-120198])
at com.pentasafe.DBAgent.AgentRegistry.decryptPrivPwd(DashoA8189)
at com.pentasafe.DBAgent.AgentRegistry.getEndpointConnectionPool(DashoA8189)
at com.pentasafe.DBAgent.CmdHandlerBase.ConnectEndpoint(DashoA8189)
at com.pentasafe.DBAgent.CmdHandlerBase.initial(DashoA8189)
at com.pentasafe.DBAgent.CmdHandlerBase.initial(DashoA8189)
at com.pentasafe.DBAgent.Reports.Oracle.GTORASYSTBLQ.initial(DashoA8189)
at com.pentasafe.mk.protocol.StreamToTaskRequest.a(DashoA8189)
at com.pentasafe.mk.protocol.StreamToTaskRequest.process(DashoA8189)
at com.pentasafe.mk.select.SocketProcess.doProcess(DashoA8189)
at com.pentasafe.mk.select.SocketProcess.doRun(DashoA8189)
at com.pentasafe.mk.select.SocketProcess.run(DashoA8189)
at com.pentasafe.
.mk.threads.WorkerThread.run(DashoA8189)
fix
To resolve this issue:
- Download the JCE 1.2.2 at http://java.sun.com/products/jce/index-122.html
- Unzip the JCE 1.2.2 download.
- Copy the four files located in the
<unzip_dir>\lib\ext to the <agent_dir>\lib\ext
.jce1_2_2.jar
local_policy.jar
sunjce_provider.jar
US_export_policy.jar
- Restart the VSA Oracle 2.0 agent and continue using the Agent.