?KMClient: Error getting key from KMS: Error from server: Access Denied?
Originally Published: 2008-12-18
Article Number
Applies To
Microsoft 2003 Server SP1
RSA Key Manager C Client
Issue
The KMS server is returning the following error:
?KMClient: Error getting key from KMS: Error from server: Access Denied?
Running test tool getKey - byKeyClass an the following error was thrown:
Failed to retrieve key after 3 retries
KMClient: Error getting key from KMS: Error from server: Access Denied
GetKey failed: Error code = 4780018
/var/log/httpd/ssl_request_log:
TLSv1 RC4-MD5 CN=Certificate "POST /KMS/rpc/emu HTTP/1.1"
Cause
The cipher is not supported on the Key Manager Server.
To check the list of ciphers check the SSLCipherSuite directive in /etc/httpd/conf.d/ssl.conf on the Key.
Resolution
Validate that the cipher being used is supported. If supported check enableFIPS(by default FIPS is set to true) in the client configuration file. The RC4-MD5 cipher is not FIPS.
Notes
Related Articles
"Access Denied" error when attempting to view detailed information on the RSA Via Lifecycle and Governance Users page Number of Views Error message "Access denied - User not a member of any identity source in access policy" in RSA SecurID Access Number of Views The aveksa.ear file fails to deploy on a WildFly cluster with an access denied error message in RSA Identity Governance & … Number of Views RSA Authentication Manager 8.8 Google Compute Engine Virtual Appliance Getting Started Number of Views Emergency Access for RSA Authentication Manager Users Number of Views
Trending Articles
How to recover the Application and AFX after an unexpected database failure in RSA Identity Governance & Lifecycle Troubleshooting AFX Connector issues in RSA Identity Governance & Lifecycle RSA MFA Agent 2.3.6 for Microsoft Windows Installation and Administration Guide RSA Release Notes for RSA Authentication Manager 8.8 RSA Authentication Manager 8.9 Release Notes (January 2026)
Don't see what you're looking for?
