REdis Enterprise Azure cache - TLS issue

Question

We are using EE redis azure cache e10 instance.

Client is (spring / jedis) and default config is TLS.

But we get these errors .....

===============================

<Jun 22, 2024 7:34:01 PM UTC> <Error> <RedisInjector> <BEA-000000> <Updating Executor on Redis Message Listener Container><Jun 22, 2024 7:34:01 PM UTC> <Error> <RedisInjector> <BEA-000000> <  Redis Message Listener Container has been updated with ThreadPoolExecutor and a LinkedBlockingQueue>

<Jun 22, 2024 7:34:01 PM UTC> <Notice> <Stdout> <BEA-000000> <19:34:01.769 [pool-11-thread-1] ERROR org.springframework.data.redis.listener.RedisMessageListenerContainer - Connection failure occurred. Restarting subscription task after 5000 ms>

Caused by: io.lettuce.core.RedisConnectionException: Unable to connect to e3-prod-console-esri-rediscache.northeurope.redisenterprise.cache.azure.net:10000

==================================

removing TLS and all works fine.

thoughts ? Since we arejust using the default TLS bundle on machine.

Answer 1

@John Fak Thanks for posting your question on Microsoft Q&A forum.

Disabling TLS seems to resolve the connection issue, which means that the problem is related to the TLS setup.

Ensure that you are using a supported version of TLS. Azure Cache for Redis supports TLS 1.2 and 1.3, and starting November 01, 2024, TLS 1.0 and 1.1 will no longer be supported

https://learn.microsoft.com/en-us/azure/azure-cache-for-redis/cache-tls-configuration

https://learn.microsoft.com/en-us/azure/azure-cache-for-redis/cache-remove-tls-10-11

Regards

Geetha

Answer 2

Thanks.
What does this mean however.

• The Lettuce and Redisson clients don't yet support specifying the TLS version. They break if the cache accepts only TLS 1.2 connections. Fixes for these clients are being reviewed, so check with those packages for an updated version with this support.