We are in process of updating our LDAP simple binding into enabling TLS by using ldaps url.
When we change the ldaps url in IAM -->user federation configuration we received the below error in the IAM server.log .
"Caused by: javax.net.ssl.SSLHandshakeException: java.security.cert.CertificateException: No subject alternative names matching IP address XX.XX.XXX.XXX found"
iam.properties file
----------------------
iam.keystore=E:/DevTest/DevTest-ED-Server.jks
iam.keystore.password=${VAULT::IAM::IAM_KEYSTORE_PASSWORD::1}
iam.truststore=E:/DevTest/IdentityAccessManager/certs/iam-truststore.ks
iam.truststore.password=passphrase
Release : 10.6
Component : DevTest Identity Access Manager
After configuring the full DNS name in LDAP configuration, issue is resolved.