Java password SDK exception

Sangavay · October 16, 2024, 12:44pm

IIQ version - 8.4 P1

Our identity refresh task often fails with the below error -
An unexpected error occurred: Error occurred while retrieving the credentials.
sailpoint.tools.GeneralException: Error occurred while retrieving the credentials.
Caused by: javapasswordsdk.exceptions.PSDKException: EN013E Failed to decrypt message (Reason: Given final block not properly padded. Such issues can arise if a bad key is used during decryption.)

We have CyberArk credential cycling enabled for all applications.

This issue is intermittent (the error happens for 2 or 3 identities per refresh but gets success next time)and I’m skeptical that the issue is with keystore.

We enabled trace for CP agents and captured logs, but don’t see any issue in password retrieval. We tried cli commands to see if it is SDK issue from CyberArk end, but could retrieve decrypted password without any issue.

It would be great if anyone can help me fix/narrow down the issue.

system · December 15, 2024, 12:45pm

This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
IIQ - Given final block not properly padded. Such issues can arise if a bad key is used during decryption error while executing any aggregation task IIQ Discussion and Questions aggregation , identityiq , certifications , connectors	9	208	December 8, 2024
Nullpointer Exception Met While Encrypted Data Synchronization Task Was Running IIQ Discussion and Questions identityiq	5	94	October 30, 2024
Exception thrown during Certification save decision IIQ Discussion and Questions identityiq , certifications	7	95	December 9, 2024
Identity policy check errors IdentityIQ (IIQ)	1	4673	January 18, 2022
WebException Error IdentityIQ IIQ Discussion and Questions identityiq	10	49	December 2, 2024

Java password SDK exception

Related topics