What can I do to get LDAP Integration not working (certificate error)?
The following line appears in server log:
Caused by: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
Best Answer
How to resolve this issue:
To correct the certificate we can manually do it by using keytool (http://docs.oracle.com/javase/6/docs/technotes/tools/solaris/keytool.html) to add the certificate into dynaTrace keystore:
1. Get a local copy of your certificate, or contact your system admin for the ssl certificate of your LDAP server.
2. Install the certificate into dynatrace keystore. Use your command prompt (if your dt server is running under windows) and follow below:
cd DT_HOME/jre/bin keytool -import -alias <LDAP server URI> -file <certificate file saved previously> keytool -list (to verify cert was imported)
(The default keystore password is changeit.)
3 Restart dt server and try again.
Another possible rootcause
The certificate hasn't been accepted by the admin yet:
2015-09-21 10:01:17 INFO [LdapConnection] SSL certificate from LDAP Server was not accepted yet by a system administrator
The simple solution is to "test" the ldap connection, a prompt to accept the certificate will be presented.
How setup LDAP in the doc:
https://community.dynatrace.com/community/display/DOCDT61/User+Permissions+and+Authentication
