SecureAuth IdP Version Affected: All
Description:
Users receive "Invalid User" and are unable to logon to a realm and the Error log will contain the following error:
Encryption.DecryptRSAUTF8 exception: Keyset does not exist
A slightly different version of this error can be seen Encryption.DecryptRSAUTF8 exception: Object reference not set to an instance of an object here
Cause:
The identity that the realm is running under (e.g. NETWORK SERVICE, SecureAuth0Pool etc.) lacks READ permission to the private key of the realm certificate, or the private key is missing.
Resolution:
SecureAuth Knowledge Base Articles provide information based on specific use cases and may not apply to all appliances or configurations. Be advised that these instructions could cause harm to the environment if not followed correctly or if they do not apply to the current use case.
Customers are responsible for their own due diligence prior to utilizing this information and agree that SecureAuth is not liable for any issues caused by misconfiguration directly or indirectly related to SecureAuth products
Comments
Double check the permissions on the cert, verify it has the Secureauth0pool, network service and authenticated users. I would remove it and re add it. I bumped into this issue, but when I removed the permissions then re-added them, everything began to work.
Please sign in to leave a comment.