Error "No subject alternative DNS name matching DomainDnsZones.internal found." when importing users in to enforce
search cancel

Error "No subject alternative DNS name matching DomainDnsZones.internal found." when importing users in to enforce

book

Article ID: 236975

calendar_today

Updated On:

Products

Data Loss Prevention Enterprise Suite Data Loss Prevention Data Loss Prevention Enforce

Issue/Introduction

Error when importing users to enforce using port 636 

Error:

java.security.cert.CertificateException: No subject alternative DNS name matching DomainDnsZones.internal found.java.security.cert.CertificateException: No subject alternative DNS name matching DomainDnsZones.internal found.

Environment

DLP 15.x

Cause

Cause is likely due to the DNS entry in the Load Balancer pointing to a DNS instead of AD server.

Resolution

Bypass Load Balancer and connect directly to a domain controller. 

If issue persists follow this KB:

User data import from AD Logins Data Source failing with SSL handshake exception (broadcom.com)

Ensure you are using the domain certificate in DLP. 

Powered by Wolken Software