Troubleshooting SSL Handshake Error

Troubleshooting SSL Handshake Error

An SSL Handshake error typically occurs when a secure connection cannot be established due to issues like incompatible SSL protocol versions, ciphers, or missing client-side certificates. 

Verify URL Accessibility

Ensure that the URL you’re monitoring is accessible from the server where Applications Manager is installed:
  1. Test in a browser: Open the URL in a private/incognito window to confirm it’s accessible over HTTPS.
  2. Use cURL or Wget: You can also use tools like cURL or Wget to test the URL's availability from the server.

Adjust SSL Protocol Version

If the issue persists, the SSL protocol version might be incompatible. To fix this:
  1. Go to the Edit Monitor page.
  2. Set the Protocol Version to Auto.
  3. Poll the monitor a few times to allow Applications Manager to automatically select the most appropriate protocol and resolve any version mismatch.

Enable more ciphers

If you’re facing issues with incompatible ciphers, enabling weaker ciphers and algorithms may help:
  1. Navigate to Settings > Global Settings.
  2. Check the option "Enable weaker ciphers and algorithms".
  3. Click Save to apply the changes.
  4. Restart Applications Manager and poll the monitor 1-2 times to check if the issue is resolved.

Check client-side certificate

If the URL uses client-side authentication (AKA 2 way authentication) then, ensure that the client certificate applied has not expired and the password added in the monitor is correct.
  1. You can check if the client certificate is present by navigating to  [Applications Manager Home] > working > Cert > URL.
  2. Here, check for the presence of the client certificate file. If the file is not present then, try updating the monitor with the certificate file. 

Check proxy settings

  1. Proxy Server Configuration: If your environment requires the use of a proxy server to access the URL, configure the proxy in Applications Manager. Click here to learn how to configure the proxy.
  2. Bypass Proxy for the URL If you have configured a proxy in Applications Manager but want to bypass it for the server host/IP, add the host/IP under the "Do not use proxy for addresses beginning with" section in the "Configure Proxy" page: Navigate to Settings > Product Settings > Proxy Server Settings.
Still facing issues?
If the problem persists, contact our support team along with the following details:
  1. A screenshot of the "Add Monitor" page. 
  2. The URL debug tool response for the URL monitor.
  3. Reproduce the issue and share the latest Support Information File (SIF) from Applications Manager, with the "Print all logs" option enabled. To do this, go to Settings > Logging, and choose "Print all logs".

      New to M365 Manager Plus?
      New to M365 Manager Plus?
        New to RecoveryManager Plus?
        New to RecoveryManager Plus?
          New to Exchange Reporter Plus?
          New to Exchange Reporter Plus?
            New to SharePoint Manager Plus?
            New to SharePoint Manager Plus?
                See all integrations
                New to ADManager Plus?
                See all integrations
                New to ADManager Plus?

                  New to ADSelfService Plus?

                  Start your free trial
                  Start your free trial

                    • Related Articles

                    • Troubleshooting URL Monitor

                      Here are few of the common errors you may come across in URL monitor, we have mentioned the steps you can follow to troubleshoot them. General troubleshooting for URL monitor Ensure that the URL is accessible from the server in which Applications ...

                    • LDAP - Unable to find valid SSL Certificate

                      If there is an error while adding LDAP Server Monitor with the message "Unable to find valid SSL Certificate", then please try the below steps to troubleshoot the issue. When the error occurs we can find the below traces in the "stderr.txt.*" log ...

                    • Real User Monitor (RUM) - Troubleshooting

                      If the monitor has not polled data for a long time, follow the steps below for troubleshooting: Step 1: Check the RUM Agent configuration Real User Monitor requires the RUM Agent to be installed and mapped to the Applications Manager. Refer the help ...

                    • Resolving Issues When Onboarding SSL-Enabled MySQL Database Servers

                      Error Message: Connections using insecure transport are prohibited while --require_secure_transport=ON Solution: To overcome this issue follow the steps given below: Execute the following query in the corresponding MySQL shell script: ALTER USER ...

                    • Troubleshooting Nutanix Monitor Handshake error in Applications Manager

                      If you encounter a handshake error while trying to access a Nutanix monitor, follow these steps to troubleshoot and resolve the issue: Ensure that all validations are performed from the machine where Applications Manager is installed. Verify Port and ...

                      Related Products