We are in process of updating our LDAP simple binding into enabling TLS by using ldaps url.

When we change the ldaps url in IAM -->user federation configuration we received the below error in the IAM server.log .

"Caused by: javax.net.ssl.SSLHandshakeException: java.security.cert.CertificateException: No subject alternative names matching IP address XX.XX.XXX.XXX found"

iam.properties file

----------------------

iam.keystore=E:/DevTest/DevTest-ED-Server.jks
iam.keystore.password=${VAULT::IAM::IAM_KEYSTORE_PASSWORD::1}
iam.truststore=E:/DevTest/IdentityAccessManager/certs/iam-truststore.ks
iam.truststore.password=passphrase

Release : 10.6

Component : DevTest Identity Access Manager

After configuring the full DNS name in LDAP configuration, issue is resolved.