KB281055: "BAD_CERTIFICATE - A corrupt or unuseable certificate was received" error shown instead of ESRI Map widget using WebLogic 10.3 and MicroStrategy Web

 

com.Strategy.utils.cache.CacheException: FATAL Alert:BAD_CERTIFICATE - A corrupt or unuseable certificate was received.

 
CAUSE
This issue is specific to Oracle WebLogic 10.3.x. Strategy Web requests an ESRI access token in order to allow end users to access ESRI Maps within Strategy Web. This request is performed through SSL/TLS. 
ESRI updated their SSL/TLS certificate from SHA1 to SHA256 encryption strength in December 2015. By default, Oracle WebLogic 10.3.x does not trust certificate encryption strength greater than 128-bit and in consequence throws the error message above.
 
ACTION
For WebLogic 10.3.6 and above, perform the following steps to enable the RSA JSSE provider:
1. Open WebLogic Console
2. Go to Servers > Configuration > SSL > Advanced
3. Select "Use JSSE SSL"
4. Restart the servers
 
Third Party Software Installation: WARNING:
The third-party product(s) discussed in this technical note is manufactured by vendors independent of Strategy. Strategy makes no warranty, express, implied or otherwise, regarding this product, including its performance or reliability.
 
KB281055