[midPoint] The validation of the certificate doesn't work with Microsoft Graph API Connector
Matus Macik
matus.macik at evolveum.com
Tue Oct 26 10:26:23 CEST 2021
Hi Andrea,
I am currently working on some demonstration regarding the connector and I found that the following certificates are the right ones to use regarding this connector:
- DigiCert Global Root CA
- DigiCert Global Root G2
Just add them to the midPoint keystore and restart midPoint.
I hope this helps.
From: "midPoint General Discussion" <midpoint at lists.evolveum.com>
To: "midPoint General Discussion" <midpoint at lists.evolveum.com>
Cc: "Andrea Picconi" <andrea.picconi at innovery.net>, "Alessia Zuin" <alessia.zuin at innovery.net>
Sent: Tuesday, October 26, 2021 10:13:48 AM
Subject: [midPoint] The validation of the certificate doesn't work with Microsoft Graph API Connector
Hi all,
I'm testing the Microsoft Graph API Connector to be able to connect Midpoint with Azure, but I have some problems with the certificate that Midpoint is using to create a secure connection to comunicate with Azure.
I have install the connector inside the correct folder, I have create the certificate .der and put it inside the keystore of Midpoint but it wasn't working, so after that I have added that certificate inside the keystore of the jvm that Midpoint use at the start up. After this I have resterted the virtual machine but I still get the same error.
Here, the error:
" org.identityconnectors.framework.common.exceptions.ConnectionFailedException(java.util.concurrent.ExecutionException: javax.net.ssl.SSLHandshakeException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target)->java.util.concurrent.ExecutionException(javax.net.ssl.SSLHandshakeException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target)->javax.net.ssl.SSLHandshakeException(PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target)->sun.security.validator.ValidatorException(PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target)->sun.security.provider.certpath.SunCertPathBuilderException(unable to find valid certification path to requested target)"
Any idea?
Thank you and regards,
Andrea
_______________________________________________
midPoint mailing list
midPoint at lists.evolveum.com
https://lists.evolveum.com/mailman/listinfo/midpoint
--
Best Regards,
Matus Macik | Developer and Identity Management Engineer
matus.macik at evolveum.com | www.evolveum.com
Evolveum
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20211026/fc802732/attachment-0001.htm>
More information about the midPoint
mailing list