Linux JDS enrolment error

Hawky
New Contributor III

Hi guys,

I'm tying to install the JDS-Linux-Installer-9.82.run on a fresh Ubuntu 14.04 LTS server in our vCenter, but I'm getting an error after providing the installer with the details it requests.

The error displayed in the terminal is:
error: (35) - gnutls_handshake() failed: A TLS fatal alert has been received.

The contents of /usr/local/jds/logs/jamf.log is:

2016-01-13 13:59:14,313 INFO Creating configuration file for https://ourjss.com:8443/
2016-01-13 13:59:14,809 INFO Starting Enrollment
2016-01-13 13:59:15,053 ERROR Communication error with the JSS 2016-01-13 13:59:15,054 ERROR (35, 'gnutls_handshake() failed: A TLS fatal alert has been received.')
Traceback (most recent call last): File "/root/bamboo-agent-home/xml-data/build-dir/REL-ACC-RELCASJDSUBUNTU/build/pyi.linux2/jamfds/out00-PYZ.pyz/jss_comm", line 84, in _perform
error: (35, 'gnutls_handshake() failed: A TLS fatal alert has been received.')

Does anyone have any insight into this please?

Thanks,
Adam

2 ACCEPTED SOLUTIONS

Jerod
New Contributor III

I think this article will help you. https://jamfnation.jamfsoftware.com/article.html?id=384
This part is probably the one that pertains to your setup.
"In addition, if you are running Java 1.6 or a JDS instance in your environment, you must also include the following cipher:
TLS_RSA_WITH_AES_128_CBC_SHA"

View solution in original post

Hawky
New Contributor III

That worked a treat, thank you!

To summarise the article for others finding this thread, in case the link is ever dead, it's basically:

Take a back up of /usr/local/jss/tomcat/conf/server.xml then add TLS_RSA_WITH_AES_128_CBC_SHA to the list of ciphers. Restart Tomcat.

View solution in original post

2 REPLIES 2

Jerod
New Contributor III

I think this article will help you. https://jamfnation.jamfsoftware.com/article.html?id=384
This part is probably the one that pertains to your setup.
"In addition, if you are running Java 1.6 or a JDS instance in your environment, you must also include the following cipher:
TLS_RSA_WITH_AES_128_CBC_SHA"

Hawky
New Contributor III

That worked a treat, thank you!

To summarise the article for others finding this thread, in case the link is ever dead, it's basically:

Take a back up of /usr/local/jss/tomcat/conf/server.xml then add TLS_RSA_WITH_AES_128_CBC_SHA to the list of ciphers. Restart Tomcat.