- RSA Identity Governance & Lifecycle 7.2.1 P12
- RSA Identity Governance & Lifecycle 7.5.0 P07
- SecurID Governance & Lifecycle 7.5.2 P03
For Wildfly deployments: After patching RSA Identity Governance & Lifecycle 7.2.1 to P12 (or later) or 7.5.0 to P07 (or later), the server fails to start. The following errors are logged to aveksaServer.log file:
java.security.NoSuchProviderException: JCE cannot authenticate the provider JsafeJCE at javax.crypto.b.a(Unknown Source) at javax.crypto.SecretKeyFactory.getInstance(Unknown Source) at com.aveksa.common.crypto.CryptoJBasedStringEncryptor.buildKey(CryptoJBasedStringEncryptor.java:404)
For IBM WebSphere deployments: After patching RSA Identity Governance & Lifecycle 7.2.1 to P12 (or later) or 7.5.0 to P07 (or later), or upgrading to SecurID Governance & Lifecycle 7.5.2 P03, the server fails to start. The following ERROR level log message are logged to the systemout.log file:
06/16/2022 09:38:01.767 ERROR (server.startup : 1) [com.aveksa.migration.jdbctool.CheckDatabase] Error reading Aveksa_System.cfg java.lang.IllegalStateException: An issue with handling encryption was encountered
16/2022 09:39:03.764 ERROR (server.startup : 1) [com.aveksa.server.runtime.AveksaSystem] Unable to check Database. java.lang.NullPointerException
- RSA Identity Governance & Lifecycle 7.2.1 P12
- RSA Identity Governance & Lifecycle 7.5.0 P07
- SecurID Governance & Lifecycle 7.5.2 P03
For Wildfly deployments, ensure you have applied the latest JAVA update upgradeJDK8u312b07.tar (or later) available with the above mentioned versions/patches.
For WebLogic deployments, ensure you update your JAVA to the latest version.
For IBM WebSphere deployments, IBM WebSphere must be updated to the the most recent version in order to support the current RSA Governance & Lifecycle patches. The following are the minimum requirements:
- IBM WebSphere 9.0.5.7 and later running IBM JDK 1.8
- IBM WebSphere 8.5.5.15 and later running IBM JDK 1.8
- IBM WebSphere 8.5.5.14 and later running IBM JDK 1.7
See additional information in the following knowledgebase article for a similar failure when attempting to run an older RSA Governance & Lifecycle version with a later IBM fixpack:
KB 000044471 - “An issue with handling encryption was encountered" with IBM JDK 1.8.0_281 and later in RSA Identity Governance & Lifecycle
Related Articles
RSA Identity Governance and Lifecycle 7.2 Configuring WildFly Clustering Number of Views Root (Server) and Client Certificates are RFC-5280 compliant starting in version 7.2.0 of RSA Identity Governance & Lifecycle Number of Views SecurID Governance & Lifecycle 7.5.2 Patch 8 Release Notes Number of Views RSA Identity Governance & Lifecycle authentication fails if the authentication sources uses Aveksa Data Collector (ADC) an… Number of Views Installing the same RSA SecurID Software Token 5.0 for Windows on different machines without reimporting Number of Views
Trending Articles
RSA MFA Agent 2.3.6 for Microsoft Windows Installation and Administration Guide RSA Release Notes for RSA Authentication Manager 8.8 RSA Authentication Manager 8.9 Release Notes (January 2026) Supported On-Demand Authentication (ODA) SMS providers for use with RSA Authentication Manager 8.x Deploying RSA Authenticator 6.2.2 for Windows Using DISM
