Skip to Content
Information
Out of support This documentation supports the 8.1 version of BMC Atrium Single Sign-On, which is in "End of Version Support." However, the documentation is available for your convenience. You will not be able to leave comments.Click here to view the documentation for a supported version of Remedy Single Sign-On.

Changing the clientAuth setting

The simplest approach for identifying why a CAC or certificate login failed is to change the clientAuth setting in the Tomcat server.xml configuration file to True.

This change makes the certificate exchange a required value. If the Transport Layer Security (TLS) handshake fails, the browser presents an error message.

For example, the following message is displayed by Firefox when the TLS handshake fails:

*Secure Connection Failed*
An error occurred during a connection to <URI>
SSL peer cannot verify your certificate
(Error code: ssl_error_bad_cert_alert)

 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*

BMC Atrium Single Sign-On 8.1