Novell Home

My Favorites

Close

Please to see your favorites.

Unable to perform ldap sync using secure ldaps over port 636

This document (7013227) is provided subject to the disclaimer at the end of this document.

Environment

Novell Filr 1.0

Situation

Unable to perform ldap sync using secure ldaps over port 636. Can't import or sync users over secure port (ldaps).
The following error occurs during the LDAP synchronization:
com.ibm.jsse2.util.j: PKIX path building failed: java.security.cert.CertPathBuilderException; PKIXCertPathBuildingImpl could not build a valid CertPath.; internal cause is: java.security.cert.CertPathValidatorException: The certificate issued by <serverFDN> is not trusted; internal cause is: java.security.cert.CertPathValidatorException: Certificate chaining error

Resolution

Please follow the steps provided in Filr documentation for Securing LDAP Syncronization.

Cause

Novell Filr does not have the root certificate imported from the LDAP directory service. The root certificate identifies the root certificate authority (CA) for your Filr site, which enables you to generate a self-signed root certificate based on your eDirectory tree.

Disclaimer

This Support Knowledgebase provides a valuable tool for NetIQ/Novell/SUSE customers and parties interested in our products and solutions to acquire information, ideas and learn from one another. Materials are provided for informational, personal or non-commercial use within your organization and are presented "AS IS" WITHOUT WARRANTY OF ANY KIND.

  • Document ID:7013227
  • Creation Date:09-SEP-13
  • Modified Date:09-SEP-13
    • NovellFilr

Did this document solve your problem? Provide Feedback