Red Hat Directory Server and errors attrcrypt_unwrap_key: failed to unwrap key for cipher AES

Solution Unverified - Updated -

Issue

  • Error is observed in Red Hat Directory Server logs.
[23/Aug/2016:19:43:23 -0500] attrcrypt - All prepared ciphers are not available. Please disable attribute encryption.
[23/Aug/2016:19:43:23 -0500] attrcrypt - attrcrypt_unwrap_key: failed to unwrap key for cipher AES
[23/Aug/2016:19:43:23 -0500] attrcrypt - attrcrypt_cipher_init: symmetric key failed to unwrap with the private key; Cert might have been renewed since the key is wrapped.  To recover the encrypted contents, keep the wrapped symmetric key value.
.
.
[23/Aug/2016:19:43:23 -0500] attrcrypt - attrcrypt_unwrap_key: failed to unwrap key for cipher 3DES
[23/Aug/2016:19:43:23 -0500] attrcrypt - attrcrypt_cipher_init: symmetric key failed to unwrap with the private key; Cert might have been renewed since the key is wrapped.  To recover the encrypted contents, keep the wrapped symmetric key value.

Environment

  • Red Hat Directory Server 9
  • Red Hat Directory Server 10

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.

Current Customers and Partners

Log in for full access

Log In