Saviynt Forums

dchin · ‎06/04/2022

After importing an AD certificate, I select "Save and Test Connection". I receive an error message that the connection has failed. I went and reviewed the application logs, I reviewed the ECM log,

I believe it is related to this error

"log":"javax.naming.CommunicationException: simple bind failed: x.x.x.x:xxx [Root exception is javax.net.ssl.SSLHandshakeException: No subject alternative names matching IP address x.x.x.x found]\n","stream":"stdout","time":"2022-06-03T20:53:42.932650142Z"}

Has anyone come across a resolution to this specific error?

The IP address used is LDAP IP Address, Should this be "Hostname" instead of a direct IP address?

sundas7 · ‎06/05/2022

Hi ,

As far I know,a SAN or subject alternative name is a kind of more defined way to indicate all of the domain names and IP addresses that are secured by the certificate.

The error indicates that your JKS file is missing the required domain on which you are trying to access the application.

Can you try with the Hostname or FQDN to see if it helps?

thanks

Shyam

dchin · ‎06/05/2022

I will try this and provide an update. Thank you for responding.

rushikeshvartak · ‎06/05/2022

SSL Works with FQDN / Domain Name . Please add domain to IP mapping in entry in host file ( /etc/hosts in Linux)

Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.

Saviynt Forums

AD Connection Issues