1. Home
  2. Support
Article - CS281199

LDAP (Active Directory) connection through PTC System Monitor Test Connection fails with error unable to find valid certification path to requested target in PTC System Monitor

Modified: 09-Mar-2018   


Applies To

  • PTC System Monitor 3.0 to 6.0

Description

  • LDAP (Active Directory) connection through PTC System Monitor (PSM) Test Connection fails with error unable to find valid certification path to requested target.
  • Active Directory is configured over SSL (Secure Socket Layer)
  • Server.0.0.log reports following error:
INFO [PermissionManager] Testing LDAP connection: ssl:<bind username>@<AD hostname>:3269/<bindDN>
2018-02-28 11:29:32 SEVERE [LdapConnection] SSL connection failed: com.dynatrace.diagnostics.server.security.LdapConnection getSSLServerCertificates:618
javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
    at sun.security.ssl.Alerts.getSSLException(Alerts.java:192)
    at sun.security.ssl.SSLSocketImpl.fatal(SSLSocketImpl.java:1949)
    at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:302)
    at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:296)
    at sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java:1509)
    at sun.security.ssl.ClientHandshaker.processMessage(ClientHandshaker.java:216)
    at sun.security.ssl.Handshaker.processLoop(Handshaker.java:979)
    at sun.security.ssl.Handshaker.process_record(Handshaker.java:914)
    at sun.security.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:1062)
    at sun.security.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java:1375)
    at sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1403)
This is a printer-friendly version of Article 281199 and may be out of date. For the latest version click CS281199