Unable to perform ldap sync using secure ldaps over port 636

Document ID:7013227
Creation Date:09-Sep-2013
Modified Date:09-Sep-2013
- Micro Focus Products:
  Filr

Environment

Novell Filr 1.0

Situation

Unable to perform ldap sync using secure ldaps over port 636. Can't import or sync users over secure port (ldaps).

The following error occurs during the LDAP synchronization:

com.ibm.jsse2.util.j: PKIX path building failed: java.security.cert.CertPathBuilderException; PKIXCertPathBuildingImpl could not build a valid CertPath.; internal cause is: java.security.cert.CertPathValidatorException: The certificate issued by <serverFDN> is not trusted; internal cause is: java.security.cert.CertPathValidatorException: Certificate chaining error

Resolution

Please follow the steps provided in Filr documentation for Securing LDAP Syncronization.

Cause

Novell Filr does not have the root certificate imported from the LDAP directory service. The root certificate identifies the root certificate authority (CA) for your Filr site, which enables you to generate a self-signed root certificate based on your eDirectory tree.