SSL communication is enabled in the Directory Server Connection settings and the previously configured certificates or path are no longer working.
You see the following error (or similar) in the tomcat localhost log:
File: Enforce\logs\tomcat\localhost.yyyy-mm-dd.log
Date: m/d/yyyy hh:mm:ss am/pm
Thread: nnn
Level: WARNING
Source: com.vontu.manager.admin.directoryconnection.DirectoryConnectionManager
Message: Test Directory Connection Failed:
Cause:
org.springframework.ldap.CommunicationException: simple bind failed: AD_server_name:port; nested exception is javax.naming.CommunicationException: simple bind failed: AD_server_name:port [Root exception is javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target]org.springframework.ldap.CommunicationException: simple bind failed: AD_server_name:port; nested exception is javax.naming.CommunicationException: simple bind failed: AD_server_name:port [Root exception is javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target]
Release: 15.8.x
Expired Secure LDAP Certificate in Enforce Keystore requires updating.