Announcing the Saviynt Knowledge Exchange unifying the Saviynt forums, documentation, training,
and more in a single search tool across platforms. Read the announcement here.
No ratings
Saviynt Employee
Saviynt Employee


Active Directory connection failure with error: PKIX path building failed: unable to find valid certification path to requested target


This can either be an invalid certificate or Saviynt application restart not done.

Causes for invalid certificate:

  • If the certificate has expired.
  • If you have installed a certificate, but application not restarted
  • Root and intermediate certificates not combined and uploaded.


  1. Get the intermediate and root certificate from the Target Application SMEs.

2. Open the certs in a notepad, Copy the root certificate and add below the intermediate certificate file and saved it as .cer file.

3. The combined certificate needs to be loaded into Saviynt UI from certificate management section under Admin Function of Admin module. more details at

4. Perform a rolling restart of all the services under Admin>Admin Functions>Application Restart to reflect the certificate changes.

5. The newly uploaded cert can be selected in the SSL certificate drop down under the connection and you should be able to establish the connection for the domain controller.

Regular Contributor
Regular Contributor

Hi @davindersingh,

When I'm trying to upload a combined certificate via Upload File option, Saviynt is throwing invalid cert exception but when I'm using the copy text option and pasting the same certificate content then it imports the cert. Is this expected behavior? Also, when we use the copy text option then does it import the entire chain or only the top most certificate from the text?




Version history
Last update:
‎04/20/2023 08:56 AM
Updated by: