ALM LDAPS : SSLHandshakeException: ValidatorException: PKIX path issue

Question ID: 110203

“ ValidatorException: PKIX path building failed:” error in ALM LDAPS. 

We have enabled the communication between source to destination servers. The default port 636 also enabled. 

In our case we are not using cacerts (default) as a trust store we are using keystore as an trust(ALM installation directory-> Sever/conf/keystore). After importing CA certificates (LDAPS Certificate) into keystore we not able to perform test connection in LDAP server page. It’s thrown an above error. We have provided the server url in the below format.

( LDAPS://***:636)  

Can you please let me know whether we need to import CA certificates into cacerts or keystore import is fine.?  What is the difference between cacerts and keystore in ALM.? ALM secure communications(HTTPS) we are using keystore only (installation directory/server/conf/keystore). 

Could you please guide us how to configure LDAPS for our servers.?



Marked as spam
Posted by (Questions: 3, Answers: 1)
Asked on September 7, 2021 5:00 pm