ISC TLS Setup Error

Aaronlobo11 · June 20, 2025, 6:36am

Hey guys,
I’ve been trying to configure TLS on my ISC tenant. I keep getting the error:
We have detected an error from the managed system.

Error Received:

[ InvalidConfigurationException ] [ Possible suggestions ] Ensure that SSL communication is in place with domain. [ Error details ] Failed to connect to - dc=xyz,dc=x,dc=z : Failed to connect to server:ldap://xyz.x.z:636 - javax.net.ssl.SSLHandshakeException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target

The connector was working when TLS was disabled.
I have a self-signed cert on the IQService machine & have it under the /sailpoint/certificate folder in the VAs

Does anyone know what I am missing? A checklist I can follow to make sure everything is fine?

Does the server part in the client need to be filled? It doesn’t let me do it, it just blanks it everytime I save and comeback.

LEOS · June 20, 2025, 9:14am

Hey Aaron,

Did you followed this link to configure TLS on IQService / VAs and client auth configuration ?

https://community.sailpoint.com/t5/IdentityNow-Connectors/IQService-TLS-and-Client-Authentication-Configuration-for/ta-p/138889#toc-hId-809622209

I already got this issue and this link solved it.

NandanaSailpoint · June 24, 2025, 6:59am

@LEOS Thank you for sharing. the given link is not working.

NandanaSailpoint · June 24, 2025, 7:27am

@Aaronlobo11
Please refer to the following documents to resolve the issue. The video linked below will guide you through the certificate generation process