{"id":2101,"date":"2018-11-17T12:23:11","date_gmt":"2018-11-17T19:23:11","guid":{"rendered":"https:\/\/www.matthewschacherbauer.com\/wp\/?p=2101"},"modified":"2025-06-06T10:57:30","modified_gmt":"2025-06-06T17:57:30","slug":"vmware-unified-access-gateway-3-3-1-fails-to-start-blast-services-in-fips-mode","status":"publish","type":"post","link":"https:\/\/www.matthewschacherbauer.com\/wp\/2018\/11\/vmware-unified-access-gateway-3-3-1-fails-to-start-blast-services-in-fips-mode\/","title":{"rendered":"VMware Unified Access Gateway 3.3.1 Fails to Start Blast Services in FIPS Mode"},"content":{"rendered":"<p>A bug exists in the FIPS version of the VMware Unified Access Gateway 3.3.1 appliance that causes the local Blast services to fail to properly initialize due to a cipher suite mismatch between local services on the appliance. The issue appears to be exclusive to the 3.3.1 release, as the issue did not exist in 3.3.0 and is said to be patched in 3.4.0.<\/p>\n<p>To resolve the issue, a single line needs to be edited in a configuration file on the appliance.<\/p>\n<p>Open the following file in an editor:<br \/>\n<code>\/opt\/vmware\/gateway\/lib\/bsg\/absg.properties<\/code><\/p>\n<p>Locate the line for &#8216;localHttpsCipherSpec&#8217; and replace it with the following:<br \/>\n<code>localHttpsCipherSpec=!aNULL:kECDH+AESGCM:ECDH+AESGCM:RSA+AESGCM:kECDH+AES:ECDH+AES:RSA+AES<\/code><\/p>\n<p>Save the file. Disable and enable the Blast service in the web administration UI. Restart the appliance.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>A bug exists in the FIPS version of the VMware Unified Access Gateway 3.3.1 appliance that causes the local Blast services to fail to properly initialize due to a cipher suite mismatch between local services on the appliance. The issue &hellip; <a href=\"https:\/\/www.matthewschacherbauer.com\/wp\/2018\/11\/vmware-unified-access-gateway-3-3-1-fails-to-start-blast-services-in-fips-mode\/\">Continue reading <span class=\"meta-nav\">&rarr;<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[11],"tags":[151,149,150,138],"class_list":["post-2101","post","type-post","status-publish","format-standard","hentry","category-professional","tag-fips","tag-horizon","tag-uag","tag-vmware"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.7 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>VMware Unified Access Gateway 3.3.1 Fails to Start Blast Services in FIPS Mode | Matthew Schacherbauer.com<\/title>\n<meta name=\"robots\" content=\"noindex, follow\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Matthew Schacherbauer\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"1 minute\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.matthewschacherbauer.com\\\/wp\\\/2018\\\/11\\\/vmware-unified-access-gateway-3-3-1-fails-to-start-blast-services-in-fips-mode\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.matthewschacherbauer.com\\\/wp\\\/2018\\\/11\\\/vmware-unified-access-gateway-3-3-1-fails-to-start-blast-services-in-fips-mode\\\/\"},\"author\":{\"name\":\"Matthew Schacherbauer\",\"@id\":\"https:\\\/\\\/www.matthewschacherbauer.com\\\/wp\\\/#\\\/schema\\\/person\\\/554130541ee604b2233ab51197a7e693\"},\"headline\":\"VMware Unified Access Gateway 3.3.1 Fails to Start Blast Services in FIPS Mode\",\"datePublished\":\"2018-11-17T19:23:11+00:00\",\"dateModified\":\"2025-06-06T17:57:30+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.matthewschacherbauer.com\\\/wp\\\/2018\\\/11\\\/vmware-unified-access-gateway-3-3-1-fails-to-start-blast-services-in-fips-mode\\\/\"},\"wordCount\":125,\"publisher\":{\"@id\":\"https:\\\/\\\/www.matthewschacherbauer.com\\\/wp\\\/#\\\/schema\\\/person\\\/554130541ee604b2233ab51197a7e693\"},\"keywords\":[\"fips\",\"horizon\",\"uag\",\"VMware\"],\"articleSection\":[\"Professional\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.matthewschacherbauer.com\\\/wp\\\/2018\\\/11\\\/vmware-unified-access-gateway-3-3-1-fails-to-start-blast-services-in-fips-mode\\\/\",\"url\":\"https:\\\/\\\/www.matthewschacherbauer.com\\\/wp\\\/2018\\\/11\\\/vmware-unified-access-gateway-3-3-1-fails-to-start-blast-services-in-fips-mode\\\/\",\"name\":\"VMware Unified Access Gateway 3.3.1 Fails to Start Blast Services in FIPS Mode | Matthew Schacherbauer.com\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.matthewschacherbauer.com\\\/wp\\\/#website\"},\"datePublished\":\"2018-11-17T19:23:11+00:00\",\"dateModified\":\"2025-06-06T17:57:30+00:00\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.matthewschacherbauer.com\\\/wp\\\/2018\\\/11\\\/vmware-unified-access-gateway-3-3-1-fails-to-start-blast-services-in-fips-mode\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.matthewschacherbauer.com\\\/wp\\\/2018\\\/11\\\/vmware-unified-access-gateway-3-3-1-fails-to-start-blast-services-in-fips-mode\\\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.matthewschacherbauer.com\\\/wp\\\/2018\\\/11\\\/vmware-unified-access-gateway-3-3-1-fails-to-start-blast-services-in-fips-mode\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.matthewschacherbauer.com\\\/wp\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"VMware Unified Access Gateway 3.3.1 Fails to Start Blast Services in FIPS Mode\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.matthewschacherbauer.com\\\/wp\\\/#website\",\"url\":\"https:\\\/\\\/www.matthewschacherbauer.com\\\/wp\\\/\",\"name\":\"Matthew Schacherbauer.com\",\"description\":\"Personal Blog\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.matthewschacherbauer.com\\\/wp\\\/#\\\/schema\\\/person\\\/554130541ee604b2233ab51197a7e693\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.matthewschacherbauer.com\\\/wp\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":[\"Person\",\"Organization\"],\"@id\":\"https:\\\/\\\/www.matthewschacherbauer.com\\\/wp\\\/#\\\/schema\\\/person\\\/554130541ee604b2233ab51197a7e693\",\"name\":\"Matthew Schacherbauer\",\"logo\":{\"@id\":\"https:\\\/\\\/www.matthewschacherbauer.com\\\/wp\\\/#\\\/schema\\\/person\\\/image\\\/\"},\"sameAs\":[\"http:\\\/\\\/www.matthewschacherbauer.com\"]}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"VMware Unified Access Gateway 3.3.1 Fails to Start Blast Services in FIPS Mode | Matthew Schacherbauer.com","robots":{"index":"noindex","follow":"follow"},"twitter_misc":{"Written by":"Matthew Schacherbauer","Est. reading time":"1 minute"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.matthewschacherbauer.com\/wp\/2018\/11\/vmware-unified-access-gateway-3-3-1-fails-to-start-blast-services-in-fips-mode\/#article","isPartOf":{"@id":"https:\/\/www.matthewschacherbauer.com\/wp\/2018\/11\/vmware-unified-access-gateway-3-3-1-fails-to-start-blast-services-in-fips-mode\/"},"author":{"name":"Matthew Schacherbauer","@id":"https:\/\/www.matthewschacherbauer.com\/wp\/#\/schema\/person\/554130541ee604b2233ab51197a7e693"},"headline":"VMware Unified Access Gateway 3.3.1 Fails to Start Blast Services in FIPS Mode","datePublished":"2018-11-17T19:23:11+00:00","dateModified":"2025-06-06T17:57:30+00:00","mainEntityOfPage":{"@id":"https:\/\/www.matthewschacherbauer.com\/wp\/2018\/11\/vmware-unified-access-gateway-3-3-1-fails-to-start-blast-services-in-fips-mode\/"},"wordCount":125,"publisher":{"@id":"https:\/\/www.matthewschacherbauer.com\/wp\/#\/schema\/person\/554130541ee604b2233ab51197a7e693"},"keywords":["fips","horizon","uag","VMware"],"articleSection":["Professional"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.matthewschacherbauer.com\/wp\/2018\/11\/vmware-unified-access-gateway-3-3-1-fails-to-start-blast-services-in-fips-mode\/","url":"https:\/\/www.matthewschacherbauer.com\/wp\/2018\/11\/vmware-unified-access-gateway-3-3-1-fails-to-start-blast-services-in-fips-mode\/","name":"VMware Unified Access Gateway 3.3.1 Fails to Start Blast Services in FIPS Mode | Matthew Schacherbauer.com","isPartOf":{"@id":"https:\/\/www.matthewschacherbauer.com\/wp\/#website"},"datePublished":"2018-11-17T19:23:11+00:00","dateModified":"2025-06-06T17:57:30+00:00","breadcrumb":{"@id":"https:\/\/www.matthewschacherbauer.com\/wp\/2018\/11\/vmware-unified-access-gateway-3-3-1-fails-to-start-blast-services-in-fips-mode\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.matthewschacherbauer.com\/wp\/2018\/11\/vmware-unified-access-gateway-3-3-1-fails-to-start-blast-services-in-fips-mode\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.matthewschacherbauer.com\/wp\/2018\/11\/vmware-unified-access-gateway-3-3-1-fails-to-start-blast-services-in-fips-mode\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.matthewschacherbauer.com\/wp\/"},{"@type":"ListItem","position":2,"name":"VMware Unified Access Gateway 3.3.1 Fails to Start Blast Services in FIPS Mode"}]},{"@type":"WebSite","@id":"https:\/\/www.matthewschacherbauer.com\/wp\/#website","url":"https:\/\/www.matthewschacherbauer.com\/wp\/","name":"Matthew Schacherbauer.com","description":"Personal Blog","publisher":{"@id":"https:\/\/www.matthewschacherbauer.com\/wp\/#\/schema\/person\/554130541ee604b2233ab51197a7e693"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.matthewschacherbauer.com\/wp\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":["Person","Organization"],"@id":"https:\/\/www.matthewschacherbauer.com\/wp\/#\/schema\/person\/554130541ee604b2233ab51197a7e693","name":"Matthew Schacherbauer","logo":{"@id":"https:\/\/www.matthewschacherbauer.com\/wp\/#\/schema\/person\/image\/"},"sameAs":["http:\/\/www.matthewschacherbauer.com"]}]}},"_links":{"self":[{"href":"https:\/\/www.matthewschacherbauer.com\/wp\/wp-json\/wp\/v2\/posts\/2101","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.matthewschacherbauer.com\/wp\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.matthewschacherbauer.com\/wp\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.matthewschacherbauer.com\/wp\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.matthewschacherbauer.com\/wp\/wp-json\/wp\/v2\/comments?post=2101"}],"version-history":[{"count":1,"href":"https:\/\/www.matthewschacherbauer.com\/wp\/wp-json\/wp\/v2\/posts\/2101\/revisions"}],"predecessor-version":[{"id":2526,"href":"https:\/\/www.matthewschacherbauer.com\/wp\/wp-json\/wp\/v2\/posts\/2101\/revisions\/2526"}],"wp:attachment":[{"href":"https:\/\/www.matthewschacherbauer.com\/wp\/wp-json\/wp\/v2\/media?parent=2101"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.matthewschacherbauer.com\/wp\/wp-json\/wp\/v2\/categories?post=2101"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.matthewschacherbauer.com\/wp\/wp-json\/wp\/v2\/tags?post=2101"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}