Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
Solved

Lotus Sametime Network Install fails when using https:// install base

Posted on 2013-01-15
7
374 Views
Last Modified: 2013-11-16
I've been working on this very frustration Sametime Standard deployment and I'm at the very end phase, and I can't get the network install files to work correctly.  I can run the standalone client and things are fine.

I've actually narrowed it down to not being able to use an HTTPS URL as defined in my download.properties file, I can switch to HTTP, and the install works perfectly.

OK, so the problem is HTTPS right?  Probably, but I can't figure out where.  I'm using a wildcard cert purchased from Netsol, and I can browse to files in the same path no issue, so I really can't see the problem here.

I clued into using http instead of https because of the following error in the install log

Unable to access site: "https://stweb.company.com/sametime/network-install/install.win/updateSite" [java.security.NoSuchAlgorithmException: SSLContext Default implementation not found: ]  **I've but in bogus hostname info...

I can use a browser to access https://stweb.company.com/sametime/network-install/install.win/updateSite/site.xml  I can view the SSL cert and it looks normal.

I'm including the full log for your perusing enjoyment, hostnames also muddled.
error-log-0.xml
0
Comment
Question by:ITDharam
  • 4
  • 3
7 Comments
 
LVL 46

Assisted Solution

by:Sjef Bosman
Sjef Bosman earned 500 total points
ID: 38780936
I did some googling using "SSLContext Default implementation not found" (with and without quotes) and I got some interesting results.

E.g. http://www.ibm.com/developerworks/forums/thread.jspa?messageID=14783433
They seem to suggest that the JRE for Domino has "flaws", or that it is the Windows JRE for Domino.

Don't ask me for details, because I haven't a clue about Sametime... I only hope it helps.
0
 
LVL 8

Author Comment

by:ITDharam
ID: 38832416
So I think you're on to something.  I'm still working with IBM support but clearly they have no idea about this, i've been escalated to the folks in India so now things are going to go a little slower, but at least they are going somewhere.

Developers told support that I need to import my SSL cert into (.keystore.JCEKS.IBM_J9_VM.install) A little googling and I find references to this keystore, and the fact that you need to update it with your cert (not self signed), and then also sign all your .JAR files with that keystore.  I imported the cert, but they didn't mention signing the JAR files so I've pushed back to support to clarify the process.

Anyways, I'm updating the ticket so you know I haven't forgotten about this, and so that maybe someone who has some experience with signing Java/Eclipse modules with a JAVA keystore can interject and tell me what exactly needs to be done. (wishful thinking...but sometimes wishes do come true!)
0
 
LVL 46

Expert Comment

by:Sjef Bosman
ID: 38832967
I'll send the URL to a friend who might know more...
0
Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

 
LVL 8

Author Comment

by:ITDharam
ID: 38889843
Just letting you know that I've still got an open PMR with IBM.  At the moment they are looking into importing certificates into the Java keystore, and how to sign the JAR files.  I don't get why this is so tough...
0
 
LVL 8

Accepted Solution

by:
ITDharam earned 0 total points
ID: 39000391
After dealing with this for a long time, the final answer from IBM is that it is currently not possibly to do an internet deployment using an HTTPS path.

Absurd.  IBM has seriously disappointed me.  For now I've switch to HTTP and continued with my rollout.

Thanks for your help though.
0
 
LVL 46

Expert Comment

by:Sjef Bosman
ID: 39000516
How odd... Thanks for closing the question!
0
 
LVL 8

Author Closing Comment

by:ITDharam
ID: 39015245
While sjef_bosman was the right track, turns out this was a trick question and my support with IBM revealed that their product just isn't able to support HTTPS for this particular function.
0

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

IBM Notes offer Encryption feature using which the user can secure its NSF emails or entire database easily. In this section we will discuss about the process to Encrypt Incoming and Outgoing Mails in depth.
SSL stands for “Secure Sockets Layer” and an SSL certificate is a critical component to keeping your website safe, secured, and compliant. Any ecommerce website must have an SSL certificate to ensure the safe handling of sensitive information like…
The goal of the tutorial is to teach the user how to instant message and make a video call in Skype.
In an interesting question (https://www.experts-exchange.com/questions/29008360/) here at Experts Exchange, a member asked how to split a single image into multiple images. The primary usage for this is to place many photographs on a flatbed scanner…

856 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question