Getting error while starting ACS 7.0 - Keystores are invalid

cancel
Showing results for 
Search instead for 
Did you mean: 
Patelvikash09
Active Member

Getting error while starting ACS 7.0 - Keystores are invalid

Jump to solution

Hello Team, 
I am using acs 7.0 , and used zip method to install acs 7.0 while running the project I am facing Invalid, keystore Error.
Please guide, whats need to be corrected - 

dir.root=C:/Users/XXXX/acs7/alf_data
dir.keystore=${dir.root}/keystore

dir.license.external=C:/Users/XXXX/acs7/licenses

keystore.PNG

 

I have copied above listed files from alfresco-content-services-distribution-7.0.0.1 ,

Error which I am getting 

ERROR [web.context.ContextLoader] [main] Context initialization failed
org.alfresco.error.AlfrescoRuntimeException: 04040002 Keystores are invalid
        at org.alfresco.encryption.EncryptionChecker$1.execute(EncryptionChecker.java:78)
        at org.alfresco.encryption.EncryptionChecker$1.execute(EncryptionChecker.java:1)
        at org.alfresco.repo.transaction.RetryingTransactionHelper.doInTransaction(RetryingTransactionHelper.java:450)
        at org.alfresco.repo.transaction.RetryingTransactionHelper.doInTransaction(RetryingTransactionHelper.java:319)
        at org.alfresco.encryption.EncryptionChecker.onBootstrap(EncryptionChecker.java:67)
        at org.springframework.extensions.surf.util.AbstractLifecycleBean.onApplicationEvent(AbstractLifecycleBean.java:56)
        at org.alfresco.repo.management.SafeApplicationEventMulticaster.multicastEventInternal(SafeApplicationEventMulticaster.java:221)
        at org.alfresco.repo.management.SafeApplicationEventMulticaster.multicastEvent(SafeApplicationEventMulticaster.java:186)
        at org.alfresco.repo.management.SafeApplicationEventMulticaster.multicastEvent(SafeApplicationEventMulticaster.java:206)
        at org.springframework.context.support.AbstractApplicationContext.publishEvent(AbstractApplicationContext.java:426)
        at org.springframework.context.support.AbstractApplicationContext.publishEvent(AbstractApplicationContext.java:383)
        at org.springframework.context.support.AbstractApplicationContext.finishRefresh(AbstractApplicationContext.java:943)
        at org.springframework.context.support.AbstractApplicationContext.refresh(AbstractApplicationContext.java:591)
        at org.springframework.web.context.ContextLoader.configureAndRefreshWebApplicationContext(ContextLoader.java:401)
        at org.springframework.web.context.ContextLoader.initWebApplicationContext(ContextLoader.java:292)
        at org.springframework.web.context.ContextLoaderListener.contextInitialized(ContextLoaderListener.java:103)
        at org.alfresco.web.app.ContextLoaderListener.contextInitialized(ContextLoaderListener.java:70)
        at org.apache.catalina.core.StandardContext.listenerStart(StandardContext.java:4716)
        at org.apache.catalina.core.StandardContext.startInternal(StandardContext.java:5172)
        at org.apache.catalina.util.LifecycleBase.start(LifecycleBase.java:183)
        at org.apache.catalina.core.ContainerBase.addChildInternal(ContainerBase.java:717)
        at org.apache.catalina.core.ContainerBase.addChild(ContainerBase.java:690)
        at org.apache.catalina.core.StandardHost.addChild(StandardHost.java:706)
        at org.apache.catalina.startup.HostConfig.deployDescriptor(HostConfig.java:689)
        at org.apache.catalina.startup.HostConfig$DeployDescriptor.run(HostConfig.java:1881)
        at java.base/java.util.concurrent.Executors$RunnableAdapter.call(Executors.java:515)
        at java.base/java.util.concurrent.FutureTask.run(FutureTask.java:264)
        at org.apache.tomcat.util.threads.InlineExecutorService.execute(InlineExecutorService.java:75)
        at java.base/java.util.concurrent.AbstractExecutorService.submit(AbstractExecutorService.java:118)
        at org.apache.catalina.startup.HostConfig.deployDescriptors(HostConfig.java:582)
        at org.apache.catalina.startup.HostConfig.deployApps(HostConfig.java:472)
        at org.apache.catalina.startup.HostConfig.start(HostConfig.java:1611)
        at org.apache.catalina.startup.HostConfig.lifecycleEvent(HostConfig.java:319)
        at org.apache.catalina.util.LifecycleBase.fireLifecycleEvent(LifecycleBase.java:123)
        at org.apache.catalina.util.LifecycleBase.setStateInternal(LifecycleBase.java:423)
        at org.apache.catalina.util.LifecycleBase.setState(LifecycleBase.java:366)
        at org.apache.catalina.core.ContainerBase.startInternal(ContainerBase.java:936)
        at org.apache.catalina.core.StandardHost.startInternal(StandardHost.java:843)
        at org.apache.catalina.util.LifecycleBase.start(LifecycleBase.java:183)
        at org.apache.catalina.core.ContainerBase$StartChild.call(ContainerBase.java:1384)
        at org.apache.catalina.core.ContainerBase$StartChild.call(ContainerBase.java:1374)
        at java.base/java.util.concurrent.FutureTask.run(FutureTask.java:264)
        at org.apache.tomcat.util.threads.InlineExecutorService.execute(InlineExecutorService.java:75)
        at java.base/java.util.concurrent.AbstractExecutorService.submit(AbstractExecutorService.java:140)
        at org.apache.catalina.core.ContainerBase.startInternal(ContainerBase.java:909)
        at org.apache.catalina.core.StandardEngine.startInternal(StandardEngine.java:262)
        at org.apache.catalina.util.LifecycleBase.start(LifecycleBase.java:183)
        at org.apache.catalina.core.StandardService.startInternal(StandardService.java:433)
        at org.apache.catalina.util.LifecycleBase.start(LifecycleBase.java:183)
        at org.apache.catalina.core.StandardServer.startInternal(StandardServer.java:930)
        at org.apache.catalina.util.LifecycleBase.start(LifecycleBase.java:183)
        at org.apache.catalina.startup.Catalina.start(Catalina.java:772)
        at java.base/jdk.internal.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
        at java.base/jdk.internal.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62)
        at java.base/jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
        at java.base/java.lang.reflect.Method.invoke(Method.java:566)
        at org.apache.catalina.startup.Bootstrap.start(Bootstrap.java:342)
        at org.apache.catalina.startup.Bootstrap.main(Bootstrap.java:473)
Caused by: org.alfresco.error.AlfrescoRuntimeException: 04040001 Failed to create key: metadata
 in key store:
   Location: C:/Users/898103/acs7/alf_data/keystore/keystore
   Provider: null
   Type:     pkcs12
        at org.alfresco.encryption.AlfrescoKeyStoreImpl.createKey(AlfrescoKeyStoreImpl.java:664)
        at org.alfresco.encryption.AlfrescoKeyStoreImpl.validateKeys(AlfrescoKeyStoreImpl.java:915)
        at org.alfresco.encryption.AlfrescoKeyStoreImpl.validateKeys(AlfrescoKeyStoreImpl.java:188)
        at org.alfresco.encryption.KeyStoreChecker.validateKeyStores(KeyStoreChecker.java:49)
        at org.alfresco.encryption.EncryptionChecker$1.execute(EncryptionChecker.java:73)
        ... 57 more
Caused by: org.alfresco.error.AlfrescoRuntimeException: 04040000 Unable to get secret key: no key information is provided
        at org.alfresco.encryption.AlfrescoKeyStoreImpl.getSecretKey(AlfrescoKeyStoreImpl.java:775)
        at org.alfresco.encryption.AlfrescoKeyStoreImpl.createKey(AlfrescoKeyStoreImpl.java:642)
        ... 61 more
May 04, 2021 3:30:52 PM org.apache.catalina.core.StandardContext listenerStart
SEVERE: Exception sending context initialized event to listener instance of class [org.alfresco.web.app.ContextLoaderListener]
org.alfresco.error.AlfrescoRuntimeException: 04040002 Keystores are invalid

 
Please guide me, how to resolve this.

Thanks,
Vikash

Thanks,
Vikash
1 Solution

Accepted Solutions
arjunmony
Established Member

Re: Getting error while starting ACS 7.0 - Keystores are invalid

Jump to solution

Hey Vikas,

From Alfresco 6.2 the Keystore configurations has been changed a little , so your config in global properties should be,

dir.keystore=/alfresco/acs/keystore/metadata-keystore

Java start args for tomcat

-Dencryption.keystore.type=JCEKS
-Dencryption.cipherAlgorithm=DESede/CBC/PKCS5Padding
-Dencryption.keyAlgorithm=DESede
-Dencryption.keystore.location=/alfresco/acs/keystore/metadata-keystore/keystore
-Dmetadata-keystore.password=XXXXXXX
-Dmetadata-keystore.aliases=metadata
-Dmetadata-keystore.metadata.password=XXXXXXXX
-Dmetadata-keystore.metadata.algorithm=DESede

 

View solution in original post

5 Replies
cristinamr
Intermediate II

Re: Getting error while starting ACS 7.0 - Keystores are invalid

Jump to solution

Hi

I think you are mixing concepts here: that "keystore" is not for SSL / mTLS configuration, but it's for encryption. As you're not using encryption (Community doesn't have this feature) you can use default "keystore" for that.

Maybe this post can help.

Cheers.

--
Check our products: AQuA : https://aqua.venzia.es | Seidoc : https://seidoc.es
arjunmony
Established Member

Re: Getting error while starting ACS 7.0 - Keystores are invalid

Jump to solution

Hey Vikas,

From Alfresco 6.2 the Keystore configurations has been changed a little , so your config in global properties should be,

dir.keystore=/alfresco/acs/keystore/metadata-keystore

Java start args for tomcat

-Dencryption.keystore.type=JCEKS
-Dencryption.cipherAlgorithm=DESede/CBC/PKCS5Padding
-Dencryption.keyAlgorithm=DESede
-Dencryption.keystore.location=/alfresco/acs/keystore/metadata-keystore/keystore
-Dmetadata-keystore.password=XXXXXXX
-Dmetadata-keystore.aliases=metadata
-Dmetadata-keystore.metadata.password=XXXXXXXX
-Dmetadata-keystore.metadata.algorithm=DESede

 

View solution in original post

Patelvikash09
Active Member

Re: Getting error while starting ACS 7.0 - Keystores are invalid

Jump to solution

Hello @cristinamr ,
Thanks, for your suggetion & Approach,
I tried the @arjunmony 's solution and it worked for me.

Thanks,
Vikash
Patelvikash09
Active Member

Re: Getting error while starting ACS 7.0 - Keystores are invalid

Jump to solution

@arjunmony 

Thanks for the Solution,
It worked for me.

Thanks,
Vikash
EddieMay
Community Manager
Community Manager

Re: Getting error while starting ACS 7.0 - Keystores are invalid

Jump to solution

Hi @Patelvikash09 

Thanks for accepting the solution - it's really helpful to other users and nice for the people who helped to know it worked.

Cheers,

Digital Community Manager, Alfresco Software.
Problem solved? Click Accept as Solution!