How to enable TLS/SSL debug logging for BE/RMS
Article ID: KB0073203
Updated On:
| Products | Versions |
|---|---|
| TIBCO BusinessEvents Enterprise Edition | 5.6 and later |
Description
I am trying to configure BE/RMS for TLS/SSL connections, but the connection fails when the application is started. How can I get more details on why the SSL handshake was unsuccessful?
Issue/Introduction
Outlines the steps needed to obtain more verbose logging details related to SSL/TLS connections.
Resolution
To get more detailed logging on SSL/TLS-related errors, you may set the Java property -Djavax.net.debug=all in your BE/RMS application's JVM arguments. To do this in Studio, open your project's CDD file in the Studio CDD editor and go to the 'Collections' tab. In the Collections view, highlight your log configuration. Scroll down to where you see the options for 'Send to Terminal'. Select the following options:
Next, add the -Djavax.net.debug=all property to your JVM arguments. If you are running your application in Studio using a Run Configuration, you may set this under the 'Main' tab > 'VM Arguments' section (as shown below).
If you are running your application outside of Studio, you may set the -Djavax.net.debug=all property in your *.tra file as follows:
- Enable
- Include Output
- Include Error
Next, add the -Djavax.net.debug=all property to your JVM arguments. If you are running your application in Studio using a Run Configuration, you may set this under the 'Main' tab > 'VM Arguments' section (as shown below).
If you are running your application outside of Studio, you may set the -Djavax.net.debug=all property in your *.tra file as follows:
java.property.javax.net.debug=all Now when you run your application, you will see additional messages to help troubleshoot the issue. For example.. 2021 Aug 26 12:46:19:506 GMT -4 host-X1E.na.tibco.com Error [main] - [root] 2021-08-26 12:46:19.506 [876864630 main] [TIBCO EMS]: [J] [SSL] reading client identity from file 'C:/TIBCO/ems/8.5/samples/certs/client_identity.p12', format=PKCS12 ... 2021 Aug 26 12:46:20:196 GMT -4 host-X1E.na.tibco.com Error [main] - [root] javax.net.ssl|DEBUG|01|main|2021-08-26 12:46:20.196 EDT|ClientHello.java:653|Produced ClientHello handshake message ( ... 2021 Aug 26 12:46:20:200 GMT -4 host-X1E.na.tibco.com Error [main] - [root] javax.net.ssl|DEBUG|01|main|2021-08-26 12:46:20.199 EDT|ServerHello.java:872|Consuming ServerHello handshake message ( ... 2021 Aug 26 12:53:08:287 GMT -4 host-X1E.na.tibco.com Error [main] - [root] javax.net.ssl|DEBUG|01|main|2021-08-26 12:53:08.287 EDT|X509TrustManagerImpl.java:238|Found trusted certificate ( ... 2021 Aug 26 12:53:08:288 GMT -4 host-X1E.na.tibco.com Error [main] - [root] javax.net.ssl|DEBUG|01|main|2021-08-26 12:53:08.288 EDT|ECDHServerKeyExchange.java:530|Consuming ECDH ServerKeyExchange handshake message ( These messages can help clearly identify any mis-configurations relating to TLS/SSL. Feedback
Yes
No
Powered by
