Reflexion will be End-of-life on March 31,2023. See Sophos Reflexion EoL FAQs to learn more.

Sophos EAS no cipher suites in common

Hello all,

I have been using Sophos EAS on premise for a few years now to allow employees to use Sophos Secure Mail. The last few years I have not encountered any problems when renewing my certificate in the EAS proxy as well as on Exchange. Since the last renewal I get now unfortunately the following error:

2023-02-02 16:02:47.157 [nioEventLoopGroup-3-4] ERROR InboundHandler_neueralsneu - Exception on channel -356888948 remoteAddr: null localAddr: no cipher suites in common

With Keytools I have looked at the corresponding certificate stores of the Java instance of the EAS Proxy and I can say that my root CA is included. In addition I can see that my used encryption method is included in the config: ECDHE-RSA-AES128-GCM-SHA256 - This is also a common method.

What I can't tell exactly is if the error message refers to the connection between client and EAS or to the connection between EAS and Exchange.

Maybe someone here has an approach that helps me.

Thanks in advance

Added TAGs
[edited by: Qoosh at 9:43 PM (GMT -8) on 2 Feb 2023]