On Tue, Sep 20, 2022 at 2:36 PM Johnson, Nachay [USA] <[email protected]> wrote: > > Trying to figure out an SSL issue with ldap. "PKIX path building failed: > sun.security.provider.certpath.SunCertPathBuilderException: unable to find > valid certification path to requested target" I added the ldap cert to > cacerts, but I still receive this message in my tomcat log. Has anyone > encountered this issue? >
Just a few quick things to check: 1) Have you restarted Tomcat after adding the certificate? 2) Have you added the issuing certificate(s) in addition to the server certificate? 3) Have you verified that the cacerts path is the one that the Java version used to run Tomcat is actually using? 4) Does the subject and/or subject alt names on the certificate match the hostname you're configuring for LDAP? So, if certificate is issued for ldap.example.com, but you're connecting with ldap1.example.com, it won't work. -Nick --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
