After updating Sophos Mobile to version 7.1, accessing the web console is not possible anymore.
When trying to access the web console via a browser, an error message is shown stating that a secure connection could not be established.
Within Google Chrome the error message says the following:
This site can't provide a secure connection
sophosmobile.company.com uses an unsupported protocol.
ERR_SSL_VERSION_OR_CIPHER_MISMATCH
Using Internet Explorer error message says:
This page can't be displayed
Turn on TLS 1.0, TLS 1.1 and TLS 1.2 in Advanced setting and try connecting to sophosmobile.company.com again.
If this error persists, it is possible that this site uses an unsupported protocol or cipher such as RC 4 which is not considered secure.
'Please contact your site administrator.
Looking into the smcproxy.log located at %MDM_HOME%\wildfly\standalone\log\, the following error can be found:
27.09.2017 10:09:09,650 WARN [SSLContextFactory] Failed to initialize the server-side SSLContext, using default
java.security.UnrecoverableKeyException: Get Key failed: java.security.InvalidKeyException: Invalid RSA private key
Caused by: java.security.spec.InvalidKeySpecException: java.security.InvalidKeyException: Invalid RSA private key'
Caused by: java.security.InvalidKeyException: Invalid RSA private key
Caused by: java.io.IOException: DerInputStream.getLength(): Redundant length bytes found
This issue is caused by a bug in the underlying Java implementation the Sophos Mobile server is using.
The SSL certificate used for the server uses an encoding format which the web server could not handle correctly.
Please refer to the article Sophos Mobile 7.1 secure connection to the web console is not possible anymore.
This thread was automatically locked due to age.