Skip to Content


We are implementing SSL between a JMS channel and websphere MQ, we set the cipher on MQ to: TLS_RSA_WITH_AES_128_CBC_SHA and this setting is also set on the PI JMS channel according to note 1869690.

After a channel restart we check the communication channel monitoring tab, we get error 2393 MQRC_SSL_INITIALIZATION_ERROR.(we also set on PI the option”other” on SSL field, and manually write the cipher, getting the MQRC_UNSUPPORTED_CIPHER error message )

Also on the trustedCAs keystore is uploaded the MQ queue manager certificate, and I also share the PI certificate to MQ team.

Working on SAP PI 7.40 dual stack.

Am I missing something?


Add comment
10|10000 characters needed characters exceeded

  • Get RSS Feed

2 Answers

  • Aug 06, 2018 at 07:29 AM


    CipherSpec TLS_RSA_WITH_AES_128_CBC_SHA you used is mapped to SSL_RSA_WITH_AES_128_CBC_SHA, which is not supported by Oracle JSSE.

    SSL_RSA_WITH_AES_256_CBC_SHA is only recognized by IBM runtime environment due to their internal mapping in MQ client code. Please refer SAP Note 2218025 and perform the changes in Solution part accordingly.

    Best Regards,


    Add comment
    10|10000 characters needed characters exceeded

  • Aug 05, 2018 at 06:45 AM

    Hi Louis,

    How did you resolve this? I am facing exactly the same issue.



    Vivek Jain

    Add comment
    10|10000 characters needed characters exceeded