Unanswered question

HTTPS application recording issues - IBM Http server Cognos 8.4.1

Hi,

I am getting error while recording https application. I am using Neoload 7.0 for recording.

The application uses below SSL:
TLS 1.2
TLS_RSA_WITH_3DES_EDE_CBC_SHA
112 bit keys.

PFB the Neoload Log,
2019/09/25 20:29:47 WARN - com.neotys.net.proxy.f.h: Exception during the recording 41 javax.net.ssl.SSLHandshakeException: Received fatal alert: handshake_failure
at sun.security.ssl.Alerts.getSSLException(Alerts.java:203)
at sun.security.ssl.Alerts.getSSLException(Alerts.java:162)
at sun.security.ssl.SSLSocketImpl.recvAlert(SSLSocketImpl.java:2023)
at sun.security.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:1125)
at sun.security.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java:1375)
at sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1403)
at sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1387)
at com.neotys.net.proxy.d.i.a(i.java:35)
at java.lang.Thread.run(Thread.java:745)

Veera M.
Veera M.

Veera M.

Level
0
2 / 100
points

Answers

Nouredine A.
Nouredine A.

Nouredine A.

Level
4
5000 / 5000
points
Team

That cipher "TLS_RSA_WITH_3DES_EDE_CBC_SHA" with 112bits key is weak and disabled by default in NeoLoad. You can try to add it back but i'm not sure if the NeoLoad JRE will accept it.

You can edit theĀ  <install_dir>\conf\controller.properties file and add in first position that cipher in the list of ciphers for the key "https.ciphers.whitelist"

To quickly test it you can manually create your HTTPS URL in NeoLoad and replay it. If you do not get any error then the recording will also work same way.