Red Hat Directory Server and errors attrcrypt_unwrap_key: failed to unwrap key for cipher AES

Solution Unverified - Updated -

Issue

  • Error is observed in Red Hat Directory Server logs.
[23/Aug/2016:19:43:23 -0500] attrcrypt - All prepared ciphers are not available. Please disable attribute encryption.
[23/Aug/2016:19:43:23 -0500] attrcrypt - attrcrypt_unwrap_key: failed to unwrap key for cipher AES
[23/Aug/2016:19:43:23 -0500] attrcrypt - attrcrypt_cipher_init: symmetric key failed to unwrap with the private key; Cert might have been renewed since the key is wrapped.  To recover the encrypted contents, keep the wrapped symmetric key value.
.
.
[23/Aug/2016:19:43:23 -0500] attrcrypt - attrcrypt_unwrap_key: failed to unwrap key for cipher 3DES
[23/Aug/2016:19:43:23 -0500] attrcrypt - attrcrypt_cipher_init: symmetric key failed to unwrap with the private key; Cert might have been renewed since the key is wrapped.  To recover the encrypted contents, keep the wrapped symmetric key value.

Environment

  • Red Hat Directory Server 9
  • Red Hat Directory Server 10

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.

Current Customers and Partners

Log in for full access

Log In
Close

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.