FME Flow: 2024.2

Failure to Connect to Directory Server (SSL)

Symptom

When connecting to Authentication Services with Encryption Method = SSL, the following message appears in the Directory Servers page:

An error occurred while communicating with directory server (81) or (91)

Alternatively, the following message appears in the log file:

(Directory Server) Exception: "An error occurred while attempting to send the LDAP message to "...": javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target caused by sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target caused by sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target"

(Directory Server) Successfully connected using directory configuration "<xxx>" and encountered 1 errors.

Cause

SSL certificate verification was enabled, but failed because the Certificate Authority (CA) was not trusted.

Resolution

If available, import the Certificate Authority (CA) certificate.